I have read about OAuth, 2-legged and 3-legged http://code.google.com/apis/gdata/docs/auth/oauth.html
I can see in all this code, that you have to provide a hardcoded key and secret, in the code. I watched the video of how an app should be installed: http://www.youtube.com/watch?v=UgiJuxe4W3Y&feature=player_embedded And i observe that at 10:00 such pairs magically appear. The problem is that according to http://www.google.com/support/a/bin/answer.py?hl=en&answer=162105 The secret looks like needing to be generated(obtained). So, i assume 2 posibilities: 1. Does the given youtube movie's company (f.soft) have that hardcoded key-secret in code. Then how is that google shows it at time 10:00 ? It's not clear if the key is the seller's domain key or the buyer's domain key (should be the buyer - as it's the buyer's private data that is going to be accessed) 2. No hardcoding is done in code, so how is the key+private handled This questions come because the documentation looks huge to me, and there is not a schema in which the key+private is shown where it stays, where it gets, place by place. Any opinion or link are welcome. -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-appengine?hl=en.
