You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Right now we are doing the whole Oauth2 flow on the back end (this project), and then redirecting to ANY client with the access token and refresh token in the URL.
As of now, any application can use our back end to authenticate with our Google App. This should be fixed asap by :
making the initial request from the FRONT END
redirecting to the front end and sending the Google auth Code to our back end
the rest does not change
The text was updated successfully, but these errors were encountered:
Right now we are doing the whole Oauth2 flow on the back end (this project), and then redirecting to ANY client with the access token and refresh token in the URL.
As of now, any application can use our back end to authenticate with our Google App. This should be fixed asap by :
The text was updated successfully, but these errors were encountered: