I've got a set of custom alert actions that when invoked, will fire off a python script that (among other things) makes a REST call out to a server that requires authentication.
As part of the design, I've defined a global configuration page (setup.xml) that will take in a username, and a secret value password. What I'd like to do is have that password stored securely, and then retrieved in my script, appended to the username, and base64'd to be included in the basic auth. header of my REST call.
What is the best practice for taking as a global input a password, storing those credentials, and then retrieving those credentials as part of a custom alert action? Thanks!