"oauth - embedding client secret in your application?" Code Answer


there are no ways of storing client credentials in a native or javascript application without making them practically public. also, putting those credentials on a proxy server and having the client talk to the server (so that the credentials are not exposed) doesn't really solve anything either. now you have a problem of authenticating the client to the proxy.

the right solution is to have special support for native applications provided by the oauth service. oauth 2.0 uses pre-registered redirection uris and other techniques to accomplish a reasonable client identity verification for such clients.

By cjhveal on September 14 2022

Answers related to “oauth - embedding client secret in your application?”

Only authorized users can answer the Search term. Please sign in first, or register a free account.