Secrets
How to securely store and manage API keys, webhook URLs, and other credentials used by the application.
Secrets
TheSecretspage lets you store sensitive credentials — API keys, webhook URLs, and connection details — in a secure, dedicated vault. Once saved, a secret can be referenced by other parts of the application (such as Alerts or Surveys) without ever exposing the raw value again.
Secrets are scoped to your organization, so any member can use a stored secret when configuring a feature, but onlyAdministratorscan add or delete them.
Viewing Your Secrets
Go toSettings → Secretsto see a list of all secrets saved in your organization. The table shows:
| Column | Description |
|---|---|
| Name | The display name you gave the secret when adding it. |
| Created | The date and time the secret was saved. |
If your organization has many secrets, use the search box at the top to filter by name.
Adding a Secret
- Go toSettings → Secrets.
- Anywhere the application asks you to pick a secret (for example, when configuring an alert sink or a survey phone provider), click the secret picker and chooseAdd new.
- Enter the required credentials for the chosen secret type (seeSecret Typesbelow).
- ClickNext, then enter adisplay namethat makes the secret easy to identify later.
- ClickAdd.
The secret value is stored encrypted and cannot be retrieved or viewed after it is saved.
Secret Types
Notification Integrations
| Secret Type | Required Fields | Used By |
|---|---|---|
| Microsoft Teams Webhook URL | Webhook URL | Alerts |
| Slack Webhook URL | Webhook URL | Alerts |
AI Providers
| Secret Type | Required Fields | Used By |
|---|---|---|
| OpenAI API Key | API Key | News, Surveys, and other AI-powered features |
| DeepSeek API Key | API Key | News and other AI-powered features |
| ElevenLabs API Key | API Key | Call Center Surveys (voice synthesis) |
| OpenAI Protocol Connection | Server URL, API Key | Custom or self-hosted AI models that follow the OpenAI API protocol |
| Ollama Connection | Server URL | Self-hosted Ollama language models |
Telephony Providers
These secrets are required to make and receive phone calls inCall Center Surveys.
Twilio
Twilio supports two authentication methods. UseTwilio API Keyfor production workloads (recommended) orTwilio Auth Tokenfor simpler setups.
Twilio API Key
| Field | Description |
|---|---|
| API Region | The Twilio region to use: US1 (Virginia), IE1 (Ireland), or AU1 (Australia). |
| Account SID | Your Twilio Account SID (starts withAC). |
| API Key SID | Your Twilio API Key SID (starts withSK). |
| API Key Secret | The secret for the API Key. |
Twilio Auth Token
| Field | Description |
|---|---|
| API Region | The Twilio region to use: US1 (Virginia), IE1 (Ireland), or AU1 (Australia). |
| Account SID | Your Twilio Account SID (starts withAC). |
| Auth Token | Your Twilio account Auth Token. |
You can manage your Twilio API keys in theTwilio Console.
Note:If you are usingTwilio Verified Caller ID numbers(numbers you own and have verified with Twilio, but not rented through Twilio), you must use theUS1 (Virginia)API region. Numbers that are rented directly through Twilio are not subject to this restriction and can be used with any supported region.
Plivo
| Field | Description |
|---|---|
| Auth ID | Your Plivo Auth ID. |
| Auth Token | Your Plivo Auth Token. |
Infobip
| Field | Description |
|---|---|
| Base URL | Your Infobip API base URL (e.g.,https://api.infobip.com). |
| API Key | Your Infobip API Key. |
| Calls Configuration ID | The Calls Configuration ID from your Infobip account. |
| Media Stream Config ID | The Media Stream Configuration ID from your Infobip account. |
Deleting a Secret
- Go toSettings → Secrets.
- Find the secret in the list and click theDelete(trash) icon on its row.
- Confirm the prompt.
Note:Deleting a secret that is still referenced by an alert sink, a survey phone provider, or another feature will cause that feature to stop working. Update the affected configurations to use a different secret before deleting.