CORS error on Authentication

I’m able to get an access token / id_token / scope / token_type in response of the OAuth2/OIDC Implicit everything seems to be fine ! Thanks for your help !

However, I have some new questions on theses informations. I have no backend for now, and do not plan to use one (api / lambda / db) :

• How do I decrypt this id_token ?
• How to store access_token in front end, since localStorage and sessionStorage are not secured places for JWT ?
• Do you recommend to build any third service to store auth informations ?

Some links I red :

• Please Stop Using Local Storage
• XSS in Vue.js

Thank you