Authentication in a desktop application

API
2

Client ID’s are considered public, the secrets and oauth tokens are private.