Question about Credentials Security and Storage

Hi there, I have an api that requires me to request and then store a authtoken until it expires.

Is the current best practice / most secure / recommended method to use the getWorkflowStaticData to store the token or other sensitive data like passwords for httprequest nodes?

Also, since a Metabase node doesn’t exist, I am storing the password in plain text within a header value in an httprequest node. I imagine it would be better to store that in a staticdata variable ?

Is there a more efficient way to set or get the static data values than by using a Function node?

Is it possible for the Credentials area in n8n to store generic values for say httprequest?

Of course there are many layers to security, and the user passwords I’m storing have very limited scope of access even if they were compromised. But I’m just trying to address each layer as best I can.

Thanks a bunch

Is the current best practice / most secure / recommended method to use the getWorkflowStaticData to store the token or other sensitive data like passwords for httprequest nodes?

The only secure way of storing credentials is in the node credentials since there is where they are encrypted.

Also, since a Metabase node doesn’t exist, I am storing the password in plain text within a header value in an httprequest node. I imagine it would be better to store that in a staticdata variable ?

You can still use the header authentication in the HTTP node.

Is there a more efficient way to set or get the static data values than by using a Function node?

Sadly, as far as I know, the only way to get access to the static data is within a function node.