61. User Credentials and Secrets

    If your library requires user credentials or secrets, such as private tokens, it’s important to store these parameters securely. There are two options:

    • When you use secrets as graph parameters (e.g., in the library.prm file), you can mark them as 'secure' to protect them from unauthorized access and comply with security best practices. Note that to use secure parameters, a Master password needs to be set in CloverDX Server. This password is used to encrypt and decrypt the secure parameters.

    • Another option is to use secret managers to retrieve the parameter values from a secure storage. This can be useful if you don’t want to store sensitive data in the library.prm file. For more information about using secret managers, see Secret Managers.