Proper way to use GCM sender id in public manifest.json file

Question

I implemented the push notification functionality in my rails application using Pushpad. In order to make push notifications work in Google Chrome, I had to create a publicly available manifest.json file. The issue is, my gcm_sender_id is publicly visible in manifest.json file.

Is there any proper way in ruby on rails to keep this information secure or any other secure way of implementing this.

score 2 · Answer 1 · answered Feb 09 '17 at 10:31

2

gcm_sender_id is publicly visible in manifest.json file

That is absolutely correct and safe! The GCM sender ID is public and anyone can see it.

It's just the GCM API key that must be kept secret.

answered Feb 09 '17 at 10:31

collimarco

34,231
36
108
142

Proper way to use GCM sender id in public manifest.json file

1 Answers1