Making a small app that uses iparam, for API Key and Domain. Works fine.
Problem comes when I need to use another api key not for a Freshworks application.
I still want it secure, but I need to not retrieve it in a post header, but third party needs in it the actual post. Any clues on best practise?