I’m implementing an app that consumes an external API. The API returns a Bearer Token valid for 2 hrs after logging in, to be used for every subsequent request. I’m new to Elixir and was wondering where to store this token for the future.
My current approach:
- Standalone application (Agent) to handle communication with this external API
- When the app is started, it tries to authenticate and get the AuthToken (checking expiry date etc)
- The token is saved in the agent’s state, it will be read from here in future calls.
Alternatives that I can think of :
a. Put the AuthToken into env variables with
Application.put_env/3 → slight security concerns as if the app crashes, env variables could get dumped to the console. Also, other apps will never need this, so it feels strange.
b. Write it to DB? Could be an overkill, but at least there’ll be one entry per new token, good for tracing.
c. Write to disk.
Might be a dumb question, but would be grateful if someone helps a noob out