Never place any mystery keys inside your application code, there's no protected way To accomplish this! Instead, you must retail outlet your key important(s) over a server and expose an endpoint which makes API calls for your customer and passes the info again. In the event the redirectUri parameter was https://robertw975oqr3.topbloghub.com/profile