I have read about OAuth, 2-legged and 3-legged
http://code.google.com/apis/gdata/docs/auth/oauth.html

I can see in all this code, that you have to provide a hardcoded key
and secret, in the code.

I watched the video of how an app should be installed:
http://www.youtube.com/watch?v=UgiJuxe4W3Y&feature=player_embedded
And i observe that at 10:00 such pairs magically appear. The problem
is that according to
http://www.google.com/support/a/bin/answer.py?hl=en&answer=162105

The secret looks like needing to be generated(obtained).
So, i assume 2 posibilities:
1. Does the given youtube movie's company (f.soft) have that hardcoded
key-secret in code.
Then how is that google shows it at time 10:00 ? It's not clear if the
key is the seller's domain key or the buyer's domain key (should be
the buyer - as it's the buyer's private data that is going to be
accessed)
2. No hardcoding is done in code, so how is the key+private handled

This questions come because the documentation looks huge to me, and
there is not a schema in which the key+private is shown where it
stays, where it gets, place by place.
Any opinion or link are welcome.

-- 
You received this message because you are subscribed to the Google Groups 
"Google App Engine" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to 
[email protected].
For more options, visit this group at 
http://groups.google.com/group/google-appengine?hl=en.

Reply via email to