Refine OAuth security
Hi, So it does not seem a security best practice to expose GOOGLE_CLIENT_ID to the user code. Google docs say that both client_id and secret_key are considered privileged data and should be secured.
So I am wondering about the security of the Google Auth example that you guys have.
Any concerns here about leaking GOOGLE_CLIENT_ID publicly?
So I am wondering about the security of the Google Auth example that you guys have.
Any concerns here about leaking GOOGLE_CLIENT_ID publicly?
