File tree Expand file tree Collapse file tree 2 files changed +39
-2
lines changed
Expand file tree Collapse file tree 2 files changed +39
-2
lines changed Original file line number Diff line number Diff line change 1414# the License.
1515"""Entry point for the Flask server.
1616
17- Loads the webapp module and starts the server."""
17+ Loads the webapp module and starts the server. Choose an appropriate launch
18+ method below before running this program.
19+
20+ WARNING: NOT FOR PRODUCTION
21+ ----------------------------
22+ This is a sample application for development purposes. You should follow
23+ best practices when securing your production application and in particular
24+ how you securely store and use OAuth tokens.
25+
26+ Note that storing tokens in the session is for demonstration purposes. Be sure
27+ to store your tokens securely in your production application.
28+
29+ Review these resources for additional security considerations:
30+ + Google Identity developer website: https://developers.google.com/identity
31+ + OAuth 2.0 Security Best Current Practice:
32+ https://datatracker.ietf.org/doc/html/draft-ietf-oauth-security-topics
33+ + OAuth 2.0 Threat Model and Security Considerations:
34+ https://datatracker.ietf.org/doc/html/rfc6819"""
1835
1936from webapp import app
2037import os
Original file line number Diff line number Diff line change 1414# the License.
1515"""Entry point for the Flask server.
1616
17- Loads the webapp module and starts the server."""
17+ Loads the webapp module and starts the server. Choose an appropriate launch
18+ method below before running this program.
19+
20+ WARNING: NOT FOR PRODUCTION
21+ ----------------------------
22+ This is a sample application for development purposes. You should follow
23+ best practices when securing your production application and in particular
24+ how you securely store and use OAuth tokens.
25+
26+ Note that:
27+ + Storing tokens in the session is for demonstration purposes. Be sure to store
28+ your tokens securely in your production application.
29+ + Be careful not to lose a user's refresh token. You will have to ask the user
30+ to re-authorize your add-on to receive a new one.
31+
32+ Review these resources for additional security considerations:
33+ + Google Identity developer website: https://developers.google.com/identity
34+ + OAuth 2.0 Security Best Current Practice:
35+ https://datatracker.ietf.org/doc/html/draft-ietf-oauth-security-topics
36+ + OAuth 2.0 Threat Model and Security Considerations:
37+ https://datatracker.ietf.org/doc/html/rfc6819"""
1838
1939from webapp import app
2040import os
You can’t perform that action at this time.
0 commit comments