I want to create a Python command-line app which uses the Dropbox Datastore API. I have registered an app with Dropbox. I have the APP_KEY and APP_SECRET.
How do I distribute this app without somehow exposing the APP_KEY and APP_SECRET?
Note: Letting the users create their own apps is -definitely- not an option in this case.
Related questions which did not answer my question:
If you just want a standalone python program, you cannot hide the key completely, you can only obfuscate it (encode with base 64 for example).
If you want to prevent people from having access to your key, you have to put your key somewhere else (server ...) and either:
1) Retrieve it at runtime from your program (Even then it is possible for someone to access it inside your program)
2) Use your server as a proxy to make the calls to the API (then the key is secure)
Collected from the Internet
Please contact [email protected] to delete if infringement.
Comments