Hi,
Are data used in workflows (such as with a “Do search for” ) public or are they safe ?
For the reason I discussed in another forum thread (API connector OAuth2 different dev and prod env) I needed to manually handle the authorisation of external API calls. However I do this by saving the API token (a sensible data) in the database and retreiving it with a “Do search for” in the workflow. Can an malicious user have acces to this information ?
I’m not sure that I could use a privacy rule, because the workflow has to be able to get this data. Maybe, if it is not safe as is, I should move those actions to an API Workflow and set “Ignore privacy rules”.