Here's how to store safely credentials for the gspread library (a Python API for Google Sheets): https://jacobian.org/til/gspread-auth-from-keyring/
It boggles my mind how 99% of the examples of using GCP APIs involve these credential files in plaintext on disk. Like Google's usually pretty good at secure defaults, but they've totally fumbled this one.
jacobian /
npub1ge…w3hpv
2023-08-18 17:55:03
Author Public Key
npub1geka2dpsu3luglt6fzqnct0wreur9uyatwg3ukswvl050xxqtclqfw3hpvPublished at
2023-08-18 17:55:03Event JSON
{
"id": "e752ebe5a22f06d82b306e02056f0598f5149cc8a76e4055b68c11d027338c07",
"pubkey": "466dd53430e47fc47d7a48813c2dee1e7832f09d5b911e5a0e67df4798c05e3e",
"created_at": 1692381303,
"kind": 1,
"tags": [
[
"proxy",
"https://social.jacobian.org/users/jacob/statuses/110911901109455029",
"activitypub"
]
],
"content": "Here's how to store safely credentials for the gspread library (a Python API for Google Sheets): https://jacobian.org/til/gspread-auth-from-keyring/\n\nIt boggles my mind how 99% of the examples of using GCP APIs involve these credential files in plaintext on disk. Like Google's usually pretty good at secure defaults, but they've totally fumbled this one.",
"sig": "dda69c0e9138124ceb13695ad963b262c5a0f3b46e81763da6980050e4349bf0db066f6cd72bd99632f13f8d5e1b1c257d7e87c64f8685b491d510608c521496"
}