Hi Stanislav, as you supposed, there's no way to keep a client secret in the code of an installed application from being revealed. I'm not a security expert, but I know that installed apps use OAuth2 successfully. You can read more on it here <https://developers.google.com/accounts/docs/OAuth2InstalledApp>.
Hope it helps! Jorge Google APIs Engineer On Sunday, June 9, 2013 4:18:55 PM UTC-7, Stanislav Ivanov wrote: > > I'm trying to create a mobile application that utilizes Google API using > OAuth 2.0. But I'm concerned if someone can use my client secret keys by > reverse engineering my application or outgoing requests from the > application to Google API and send requests on behalf of my application. > > Is there a way to prevent revealing of my client secrets? > -- -- You received this message because you are subscribed to the Google Groups "Google AJAX APIs" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] To view this message on the web, visit https://groups.google.com/d/msgid/google-ajax-search-api/c8eb1957-d574-436f-9ff9-cf1da03b5101%40googlegroups.com For more options, visit this group at http://groups.google.com/group/google-ajax-search-api?hl=en?hl=en --- You received this message because you are subscribed to the Google Groups "Google AJAX APIs" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/groups/opt_out.
