I'm interested in the refreshToken method. If the app is an Android/iOS app it is a pretty bad idea to put the client_secret into the code as it can be easily retrieved by decompiling the app.
Is there any other way to obtain a refresh token using the SDK that does not involve supplying the client secret?
I'm interested in the
refreshToken
method. If the app is an Android/iOS app it is a pretty bad idea to put theclient_secret
into the code as it can be easily retrieved by decompiling the app.Is there any other way to obtain a refresh token using the SDK that does not involve supplying the client secret?