Storing authentication tokens

duncanm · October 31, 2022, 9:55am

We've been creating resources in Retool with no problem. However most of the integrations we're setting up just use an authorization token in the header.

It's not very clear how to store these securely. Currently we're putting them in the header in the query set-up but this is available in plain text.

I've tried looking at custom auth and variables there but it seems to be the same story. You can set the token as a variable but it's still available in plain text.

Had a look here and didn't see much either: Custom API authentication

How can we store this type of auth tokens securely?

Kabirdas · November 9, 2022, 3:47am

Hey @duncanm!

We're currently developing a feature to allow you to be able to store sanitized instance-wide variables. It isn't currently in public beta but if you reach out to us directly (e.g. via in-app chat) we'll see if we can turn the experimental feature flag on for you!

duncanm · November 14, 2022, 3:02pm

Thanks, I'll do that

VM_Tech · May 4, 2023, 9:52am

Is this open to GA or still in beta?
How can we get this feature added to our account.

Kabirdas · May 5, 2023, 10:38pm

It's still in beta - if you'd like to have it added to your account you can reach out to support@retool.com or via in-app chat as mentioned above!