topic Re: scripting API queries without hardcoded access token in the script in Dynatrace API

Scripting API queries without hardcoded access token in the script

jdport — Tue, 20 Aug 2024 13:57:18 GMT

Hello,

I've written several scripts for various tasks with the Dynatrace API but updated security requirements are going to be prohibiting me from having our API token hard coded in the script. I was wondering how others have dealt with this... how I can pass a credential to the API without having it in the actual script that would satisfy our security team.

Thanks in advance for any thoughts on this.

-Jeff

Re: scripting API queries without hardcoded access token in the script

AntonPineiro — Sat, 27 May 2023 14:11:49 GMT

Hi,

Maybe you can use environment variables or asking token in prompt.

Best regards

Re: scripting API queries without hardcoded access token in the script

alexander_dt — Thu, 01 Jun 2023 13:36:28 GMT

I'd second @AntonPineiro's response. If it's an interactive application, prompting the user is probably the safest approach. Otherwise, environment variables are also often used in this context (of course, you'll still need to make sure those are secure as well) or reading the values from a (possibly encrypted) database or configuration file.