Webextension : Where to Store ClientId (OAuth2)

Hi,

In my webextension I want to use google drive to make backups on google drive.
Is it safe to store the clientId in webextension source code (github, .xpi) or is it a security issue?

I found 1 discussion about it where they say that it is fine :

But I am not sure. What is your opinion?

Kind regards,
Gabor

Client IDs should be fine, however secrets and tokens may be a different issue.

So I have a clientId with no secret. In this case is it OK?

Should be fine, yes.

1 Like