Thanks Joe, I've come up with a bit of a hack using a workflow and involving only adding the Authentication header into the API request at the resource query stage rather than having it as an innate part of the resource.
Trouble is I can't get the python cryptography library to be recognised, despite it being one gf the "preinstalled packages" would you mind having a look at this topic please?