Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Is storing API keys in cloud code secure? #1326

Closed
rihadavid opened this issue Apr 1, 2016 · 1 comment
Closed

Is storing API keys in cloud code secure? #1326

rihadavid opened this issue Apr 1, 2016 · 1 comment

Comments

@rihadavid
Copy link
Contributor

Is it secure to explicitly write OAuth 2.0 client secret key in source code of a cloud code function? Is cloud code protected from public access?

Or how should I safely store secret key that I need to communicate with foreign API?

I am still developing my app on parse.com, but will move to Parse Server soon.

Thank you very much.
@hramos
Copy link
Contributor

hramos commented Apr 1, 2016

The source for the cloud code you write in your Parse Server should not be publicly visible when your server is deployed unless you're doing something very wrong. Closing as this is not an issue with Parse Server itself.

For implementation related questions or technical support, please refer to the Stack Overflow and Server Fault communities.

@hramos hramos closed this as completed Apr 1, 2016
@snyk-bot snyk-bot mentioned this issue May 1, 2021
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@hramos @rihadavid