I’m making a website that I’m planning on making readily deployable by users; they’ll

Question

0

Asked: June 12, 20262026-06-12T07:27:12+00:00 2026-06-12T07:27:12+00:00

I’m making a website that I’m planning on making readily deployable by users; they’ll

0

I’m making a website that I’m planning on making readily deployable by users; they’ll be able to take my source code and deploy it to their own server and run it as their own.

I was thinking of trying to incorporate SSL and OpenID and other features into the website. Would giving the users access to these files (such as my OpenID/Twitter/Facebook client key and secret, or the SSL certificate stuff, or whatever else..) be a potential security hazard or anything? Would they be able to do anything dangerous with this information?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-12T07:27:13+00:00

Editorial Team

2026-06-12T07:27:13+00:00Added an answer on June 12, 2026 at 7:27 am

SSL is not the app’s concern

All client key and secret are your own responsibility… I wouldn’t distribute them openly.

Normally what one does is to read this information from the environment

facebook_client_key = ENV["FACEBOOK_CLIENT_KEY"]

so the deployer has only to configure the environment, not the application.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I’m making a website that I’m planning on making readily deployable by users; they’ll

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply