roulès
roulès
Explore posts from servers
KPCKevin Powell - CommunityCDCloudflare Developers
PostsComments
KPCKevin Powell - Community
Created by roulès on 4/23/2023 in #back-end
Safely store an API client secret with Electron JS
Hi, I'm building a project with Electron, and I need to use APIs, since I want to make this app public, I must store safely my client secret and tokens I know the existence of safeStorage.encryptString(), and I played a little with it, what I think I can do is encrypt my client secrete once, and since the returned thing is a buffer, convert this buffer to string, and then store it in a JSON for later But my question is, how can I be sure a user will not take the encrypted token or client secret and decrypt it in his own instance of electron with safeStorage.decryptString() ? I'm a little lost, and I want to be sure it safe but I really don't know a lot of electron and encryption Thank you for your help
31 replies
KPCKevin Powell - Community
Created by roulès on 4/19/2023 in #back-end
electron js, cant use an iframe
hi, i need to embed a twitch clip for a project of my own, and i want to use electron the ifram is working when the html is simply opened in the browser but with electron i've on one side an error in the console: 
(node:1012) electron: Failed to load URL: https://clips.twitch.tv/embed?clip=<idduclip>&parent=127.0.0.1&autoplay=true&muted=false with error: ERR_BLOCKED_BY_RESPONSE
(node:1012) electron: Failed to load URL: https://clips.twitch.tv/embed?clip=<idduclip>&parent=127.0.0.1&autoplay=true&muted=false with error: ERR_BLOCKED_BY_RESPONSE
and on the other side in the dev tools: 
Refused to frame 'https://clips.twitch.tv/' because an ancestor violates the following Content Security Policy directive: "frame-ancestors http://127.0.0.1:* https://127.0.0.1:*".
Refused to frame 'https://clips.twitch.tv/' because an ancestor violates the following Content Security Policy directive: "frame-ancestors http://127.0.0.1:* https://127.0.0.1:*".
thanks for your help
5 replies