File security in workflow

stoklasa.michal666 · 2024-07-15T13:07:07.584Z

Hi,

I made a plugin for Google Cloud services authentication, but I’m not sure if it is safe to load the credential JSON in the workflow to get the token.

To get the token, you need to export the credentials from a Google service account, which is a secret file. This file is loaded into the workflow and is attached to some record in the database—specifically, to a user record with no privacy settings applied.

This workflow will be accessed by random users.

So, is it safe to load such a file in the workflow?

image342×549 13.3 KB

Thank you.

Best,
Michal

J805 · 2024-07-15T14:42:42.511Z

Hmm Good question. Can you run it on a backend workflow instead of exposing it on the front end?

stoklasa.michal666 · 2024-07-15T15:00:11.933Z

Yes but its harder way because i need to return token back. So i have to do it with custom api call to backend workflow.

J805 · 2024-07-15T15:03:53.531Z

Yes. Correct. But I think that is the safer way to go. I think you can also use the Bubble App Connector to connect to your own app which makes it a bit quicker I believe. I saw someone say here that they have done that before.