I’m implementing a Magento Extension which connects to a third-party API. I’m brand-new to Magento, but familiar with MVC systems in general.
My question is simply, "Where (and how?) should I store the credentials used to access this third-party API? I could create a database table and store them there, but it feels like overkill. I’ve seen people mention using the Magento cache as a key/value store, but it sounds too fragile. I’ve noticed that Magento seems to have some sort of config object (not really dug into it yet), maybe that’s my best option?
Which of these (if any) is ‘correct’? Which will cause me the fewest headaches in the long run?
it goes without saying that i will need to salt/hash these credentials, but i guess the same question applies to ‘where should i store the salt’?