I am trying to use the Zoom APIs to pass registrations from my form to Zoom. I am concerned about the security of using the API. From what I understand from the documentation, the oauth token is written in plain text. Thus, if someone views the source code on my webpage, they would be able to view the oauth token written in plain text. If they can view the oauth token, they can use that token and the rest of the API documentation to write an API that will delete a meeting or do other things on my account that they are not authorized to do.
I’m not an expert in APIs and Oauth security. I’m trying to understand how to complete these registrations in a secure way. Could we schedule a short meeting to help me understand how these APIs are secure?