There appears to be an inconsistency in the documentation for "Using OAuth 2.0 for Installed Applications" (docs/oauth-installed.md) regarding the handling of the client secret.
Overview Section: States that the "client ID and client secret obtained from the API Console are embedded in the source code of your application."
Creating Application Credentials Section: Advises to "securely store" the client_secrets.json file containing the client secret, implying it should not be directly embedded in the source code.
Could you please clarify the recommended approach for handling the client secret in installed applications?
Hi,
There appears to be an inconsistency in the documentation for "Using OAuth 2.0 for Installed Applications" (docs/oauth-installed.md) regarding the handling of the client secret.
Could you please clarify the recommended approach for handling the client secret in installed applications?
Thanks