Credentials
Permission Slip stores your service credentials in an encrypted vault so agents can execute approved actions on your behalf — without ever seeing your credentials directly.How Credential Storage Works
When you store a credential:- You provide the service name, a label, and the credential values (e.g., an API key).
- Permission Slip encrypts the credential using AES-256-GCM and stores it in the vault.
- Only the metadata (service, label, date added) is visible in the UI — the secret value is never displayed again.
- At action execution time, Permission Slip decrypts the credential, passes it to the connector, and the connector uses it to authenticate with the external service.
Credentials are never logged, never included in API responses, and never exposed to agents. They are decrypted only at the moment of action execution.
Add a Credential
Open the connector detail page
Navigate to the agent’s config page, then click Configure on the connector.
Find the Credentials section
Each required credential type shows its service name, auth type, and current status — either Connected (green) or Not configured.
Click Connect
Fill in the credential details for the service. The required fields depend on the auth type (e.g., API key, OAuth token).
Manage Credentials
From the Connector Page
Each stored credential shows a delete button. Removing a credential means actions for that service can no longer be executed, even if approved.From Settings
The Credential Vault section in Settings shows all credentials stored across all connectors:- Service name
- Label and date added
- Active status