I have a client ID and secret for the Google Drive API. I want users to be able to mount their Drive account without knowing that ID and secret. They should be able to type in a folder name, select “Google Drive” from the External Storage column, and press “Grant access”, without seeing or entering the client ID and secret.
Is this possible without code modifications? If it isn’t possible, what files would I want to modify? Thanks.
Yes. I don’t want users to be able to see the pw/secret boxes or see the codes. The whole point of registering an application with Google is so users can integrate the application with their Google account, no?
sure. the user himself. not neccessarily other users. since this (google drive) is not intended to be a shared medium at first place.
since this would mean a personal folder in YOUR google-account i see no other way than making these folders manually in your G-drive and then share them individually to each user… they would have access to it through their account.
There would be one ID and one secret for all users on the server. ID/secret pairs are assigned to an application, not to a user. That’s why you can sign in to a website or app with your Google account without needing to supply your own ID and secret. Apologies if you already know that.
I’m basically going through the code, finding all the places where the user-supplied ID/secret are expected, and rewriting those places to instead use a globally-defined pair. That way the users won’t need to worry about requesting their own, and I won’t be giving away a secret key to strangers that could use it to mine Bitcoin on Google’s cloud with my credit card :).