Hi all,
I'm wondering why there's a secret key if you need to include it with
desktop applications... Of course, there's the client secret key which
needs to remain secret, but why is there a secret key for applications
if it doesn't remain secret?
Is it the combination of the 4 keys that always
Hi Tom,
I'm happy you're fully considering the implications here. With desktop
applications, it's a matter of best effort security with your consumer
secret and access token secrets. We recommend making it difficult to obtain
the keys from a packaged application, while acknowledging that a
