How to use the API keys in REST message without exposing the key value?

Suggy · ‎02-16-2025

How to use the API keys in REST message without exposing the key value?

(I can define in Header, but the API key value is visible)

PS - Looking for an answer w.r.t Rest message only not Flows etc.

Stefan Reichelt · ‎02-16-2025

Maybe a very pragmatic approach helps: If you create a Sys Property of type "password", you can store the key without exposing it. When you set the header value via script, you can call and decrypt it from there again.

Additional source which might be helpful:

How to use Password Properties — SNow Underground

View solution in original post

Najmuddin Mohd · ‎02-16-2025

Hello @Suggy ,

You can store the key and value in the api_key_credentials table and from the script you can call the rest message, attaching the API Key in the header.

If the above information helps you, Kindly mark it as Helpful and Accept the solution.
Regards,
Najmuddin.

Suggy · ‎02-16-2025

@Najmuddin Mohd Can you share the syntax? How to call API key stored in api_key_credentials using setRequestHeader()?

Stefan Reichelt · ‎02-16-2025

Maybe a very pragmatic approach helps: If you create a Sys Property of type "password", you can store the key without exposing it. When you set the header value via script, you can call and decrypt it from there again.

Additional source which might be helpful:

How to use Password Properties — SNow Underground

Suggy · ‎03-10-2025

Thanks a lot @Stefan Reichelt