Forum Discussion

Anonymous

2 years ago

Where should access tokens be stored?

Hello, I just set up a connect server, and was unsure of what to do with the access token. Is it safe to store it in source code now that all requests have to go through the connect server? Where ...

secrets management

Anonymous

2 years ago

Definitely never store your access token in source code.

An ideal / typical setup is that you keep your access token in a normal vault (whereever you keep your other logins, etc...)

Whenever you run your code, you set an ENV variable (PWD_TOKEN or something like that) and pass it to your code as an environment variable

Forum Discussion

Where should access tokens be stored?

Featured discussions

Developer newsletter: May 2026

Recent discussions

CLI Slow Performance

No environment support in Linux

Feature Request - MCP Limiting Controls

1password locks within 10 seconds on High Performance or Dynamic resolution screen share on macOS

Feature Request: Can we get a gh auth login style flow for the CLI?