How to handle application secrets in a Roblox Plugin

Hello, I am currently making a plugin which needs access to external apis.
Those API’s requires keys which is usually fine when doing outside of Roblox but I don’t have a way to have a “environment files” in plugins to store them I am stumped.

I was thinking of using a external secrets vault but later realized that it would also require a secret key to access the api keys.

Then I found Secrets Stores but realized they werent compatible with plugins.

So how would I store secrets in the plugin? I don’t want to hardcode them since the source of a plugin can easily be viewed.

Thanks in advance.

I don’t think that there’s a secure way to store your secret keys inside plugins. Can you give more details on why you need to store secrets?

Because I would not want to leak my API secret so that anyone who sees the source of the plugin can misuse the API.

You can create your own web server and store the API key in there, and you could use that server as a proxy

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.