Stack Overflow
Stack Overflow

Questions tagged [app-secret]

68 questions
3
votes
2 answers

Invalid appsecret_proof provided in the API argument

i have created an app in my facebook account and done post to my friend using my access token (php). But another user cannot post to their friend using my app id and secret and getting the error Invalid appsecret_proof provided in the API…
user3128430
  • 87
  • 1
  • 1
  • 7
3
votes
1 answer

Can i share the same App id and App Secret between an iOS App and the corresponding Facebook Game?

I have seen this new policy and I'm a bit worried: *(Games on Facebook.com and mobile must not share the same app ID with desktop web games off of Facebook.com) I have 3 apps that shared the same app id and app secret: a website that use facebook…
Gianluca Cassaro
  • 31
  • 2
2
votes
2 answers

Protecting app secret for extendAccessToken usage

I'm developing for Android and currently use facebook-android-sdk for authentication. From what I can see there is no use of the app secret in that code which is great. Now that Facebook are going to remove the offline_access permission I need to…
roee88
  • 195
  • 2
  • 12
2
votes
1 answer

Updates to converged applications are not allowed in this version

We are trying to create secrets for applications in b2c tenant from powershell. After searching a lot, came across these commands that are working fine for normal applications. $StartDate = Get-Date $EndDate =…
Waltz
  • 23
  • 5
2
votes
1 answer

Error using REST API: "error_description": "AADSTS7000215: Invalid client secret is provided.\r\nTrace ID:

I'm trying to use the REST APIs to delete Assets in Purview but I keep this error: "error_description": "AADSTS7000215: Invalid client secret is provided.\r\nTrace ID: I have an App Registration that is assigned both the Owner and Purview Data…
jch
  • 187
  • 3
  • 17
2
votes
1 answer

Store secret key in Xamarin Forms

I try to understand how I can store secrets in a xamarin forms project. I have a web api core as a backend and a xamarin forms app as a frontend. I am trying to code facebook authentication with Xamarin.Auth and I need to pass secret key to my…
dalton5
  • 915
  • 2
  • 14
  • 28
2
votes
3 answers

Storing UserName and Password in a WebApp

I have a SpringBoot 2.1.4.RELEASE RESTful Web Service app., using Spring Initializer, embedded Tomcat, Thymeleaf template engine, and package as an executable JAR file, which is using a third party REST API secured by JWT, so I need to store in the…
carles xuriguera
  • 930
  • 1
  • 14
  • 30
2
votes
1 answer

Read secrets inside of Redhat OpenShift online?

I have gotten a Redhat OpenShift online starter vps, for hosting my discord bot. I've uploaded it to github, minus my discord token and other API keys, of course :^) How would I get OpenShift to use store and read client secrets? I'm using the…
user10728869
2
votes
0 answers

What is the safest way to store user secrets in a .NET Core application?

While reading the documentation, I saw a red warning messages for both approaches: environment variables and user secrets. So what is the safest approach? And what is safest (and most practical hopefully) approach when using docker?
Daan
  • 2,478
  • 3
  • 36
  • 76
2
votes
5 answers

Interacting with Azure Key Vault using python w/ rest api

I am very interested in using the new service recently released for secret management within Azure. I have found a few example guides walking through how to interact with key vault via powershell cmdlets and c#, however haven't found much at all in…
Gary Wright
  • 33
  • 1
  • 4
2
votes
3 answers

facebook graph api calls with appsecret_proof in python

What is the right way of making graph api calls with appsecret_proof parameter in python? Is there any library that allows such thing? I was trying to use 'python for facebook' library but the documentation is literally nonexistent so I can't figure…
Tony Babarino
  • 3,355
  • 4
  • 32
  • 44
1
vote
1 answer

What happens if somebody gets their hands on my appsecret?

According to the documentation here (http://developers.facebook.com/docs/authentication/). Your app secret should never be shared: The app secret is available from the Developer App and should not be shared with anyone or embedded in any code…
GONeale
  • 26,302
  • 21
  • 106
  • 149
1
vote
1 answer

Does docker compose log environment variables loaded by env_file?

We can load random data into a container like this: vars.env FOO=123 BAR=abc docker-compose.yml my_service: image: my_image env_file: - ./vars.env # ... Is it possible that those environment variables will be logged? (I'm running the…
lonix
  • 14,255
  • 23
  • 85
  • 176
1
vote
0 answers

How to protect my SDK from being absued with api_key & api_secret?

Suppose I'm going to create a sdk of my own service. On my experience, most sdks have two things to auth the app which are api_key & api_secret. As I known, the api_key used for identify the app, and the api_secret used for access control and verify…
Namek Master
  • 91
  • 2
  • 6
1
vote
0 answers

Get full list of secret codes in android

I was able to run some of the settings hidden apps via ADB with ADB shell am start -a android.intent.action.MAIN "com.android.settings" These hidden apps are actually some of the activities runnable via "secret codes". Since secret codes are various…
Diego Contaldi
  • 11
  • 1
1
2
3 4 5