For this reason alone I would probably implement this into personal websites (don’t want to try pitching this to any clients…)
I just bank on the fact that google (gmail) has better security than I could give - thus I’ll let them safeguard my token 
.
Pretty smart idea - good article!