Open mmathys opened 8 years ago
It seems that Google recommends some workflows to make it work: https://github.com/googlesamples/oauth-apps-for-windows/tree/master/OAuthDesktopApp
OAuth2 cleate a private unique token per user on device, this token could be detached from the account without change your password and prevent save password on app
Why would one use OAuth for a desktop app? You have nowhere to hide the client secret so in the end everyone can access your users.
Do I get something wrong here?