Hide API keys in plugin | WordPress.org

colis
(@colis)

6 years, 6 months ago

Hi! I’m developing a plugin that uses Slack APIs for the integration with specific webhooks. In order to call Slack APIs I need to use secret keys, which will then be visible to anyone that will use the plugin. Is there a way I can store this data safely? Thanks!

Viewing 1 replies (of 1 total)

catacaustic
(@catacaustic)

6 years, 6 months ago

Really, no. If the values need to be encrypted and decrypted, something else will be able to decrypt them to.

The way that this is normally handled is that the users will enter their own API keys and secret keys instead of using yours. That way they have full control over everything, and no one has to “share” keys unsecurely.

Viewing 1 replies (of 1 total)

The topic ‘Hide API keys in plugin’ is closed to new replies.

In: Developing with WordPress
1 reply
2 participants
Last reply from: catacaustic
Last activity: 6 years, 6 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics