Stack Overflow
Stack Overflow

Questions tagged [app-secret]

68 questions
52
votes
15 answers

why do I get "Invalid appsecret_proof provided in the API argument"

Since the latest change on Facebook, regarding the appsecret_proof: https://developers.facebook.com/docs/reference/api/securing-graph-api/, we are still unable to download performance reports even after enabling/disabling features from Advanced…
user1508682
  • 1,329
  • 5
  • 23
  • 34
34
votes
6 answers

How to store critically sensitive information such as secret, key, token, encryptionKey in iOS application

When we talk about securing iOS application we often forget to secure most critically sensitive information such as secret, key, token, encryptionKey. This information is stored in iOS binary. So none of your server side security protocol will help…
Rajan Twanabashu
  • 4,586
  • 5
  • 43
  • 55
29
votes
5 answers

How to use user secrets in a dotnet core test project

I want to store a database connection string for my integration tests as a user secret. My project.json looks like this: { ... "dependencies": { ... "Microsoft.Extensions.Configuration.UserSecrets": "1.1.0" }, "tools": { …
Paul Hunt
  • 3,395
  • 2
  • 24
  • 39
12
votes
3 answers

NOt able to get the app secret for Facebook login with Firebase

I have explored all the options in my app console page in facebook developers site. Nowhere I am able to find secret key which is required to use facebook login with firebase. Looking at other solutions.. they says it is found on dashboard, but on…
Tapesh Gupta
  • 363
  • 7
  • 21
10
votes
4 answers

How to Make a Secret iOS App Text Animation

I'm trying to duplicate the Secret App's Text Label transition. Does anyone the best way to approach it? It looks like they have each letter start out as clear text color and then animate it to gray and then white text color. Here are some…
NatashaTheRobot
  • 6,879
  • 4
  • 32
  • 27
8
votes
4 answers

How to use Hashicorp Vault's AppRole in production?

We have installed and configured Hashicorp Vault AppRole authentication for one server, by storing the role_id and secret_id in a local file on the server, and we're able to have code on the server read the values from file, authenticate to Vault,…
tplive
  • 687
  • 8
  • 17
8
votes
2 answers

Rails secrets.yml VS Dotenv VS Figaro with Capistrano on AWS

There are several posts ans Stack Overflow questions about how to manage API tokens on the web, but I see a lot of people repeat what they read somewhere else, often with contradictions... How do you deal with API Tokens, secrets and the like…
Cyril Duchon-Doris
  • 12,964
  • 9
  • 77
  • 164
7
votes
2 answers

Hashicorp Vault for file storage?

I'm expecting to save a lot of documents of considerable size, from 1M to potentially multiple orders of magnitude larger. I know Hashicorp's Vault is great for secret keys and smaller values. I would love to get the "glass break" functionality and…
trevorgrayson
  • 1,806
  • 1
  • 21
  • 29
5
votes
3 answers

kubernetes secret items not mounted as file path

I have the following yaml: volumeMounts: - name: app-secret mountPath: /app readOnly: true volumes: - name: app-secret secret: secretName: app-secret items: - key:…
Kok How Teh
  • 3,298
  • 6
  • 47
  • 85
5
votes
1 answer

Extract public posts from Facebook page without API/APP key/token/secret

Just to clarify in advance, I don't have a Facebook account and I have no intent to create one. Also, what I'm trying to achieve is perfectly legal in my country and the USA. Instead of using the Facebook API to get the latest timeline posts of a…
Forivin
  • 14,780
  • 27
  • 106
  • 199
5
votes
3 answers

"The request is invalid because the app secret is the same as the client token" error when trying to get an access token

I was using facebook php sdk without any problem to provide facebook login on my website. Since a few days, I'm unable to log in anymore. I follow the steps described on https://developers.facebook.com/docs/howtos/login/server-side-login/ but at…
r0ro
  • 196
  • 2
  • 8
4
votes
1 answer

How bad is publishing the app secret really?

After significant voodoo, I have finally got the scores API working. Turns out you have to set Enhanced Auth Dialog to disabled or Facebook ignores your publish_actions permission. Just a heads up in case anyone else is struggling. However, I'm…
AshleysBrain
  • 22,335
  • 15
  • 88
  • 124
4
votes
3 answers

Manage User Secrets for Class Library

Situation I have 3 dotnet core projects in question: Web API Worker Service Class Library In the class library, I have a shared EmailService class that I register for dependency injection in both the Web API and the Worker Service. Both the Web…
Jake Smith
  • 2,332
  • 1
  • 30
  • 68
4
votes
0 answers

Accessing secret within Shiny App - works with shinyApp() called explicitly, not runApp()

I'm attempting to store app secrets for my Shiny app (API keys, database credentials) using the secret package. I have the vault correctly set up and accessible from the console, and have added a test secret (name "test", with some foobar text…
robbfitzsimmons
  • 41
  • 3
4
votes
1 answer

Permission Denied for Kubernetes Secrets with SELINUX Enabled

I followed kubernetes documentation to manage secrets of my applications. http://kubernetes.io/v1.1/docs/user-guide/secrets.html When pod starts it kubernetes mounts secret at the right place, but application is unable to read secret data as it…
emcpow2
  • 852
  • 6
  • 19
1
2 3 4 5