How to generate a api_key_secret code?
Hello @Shivam_Tripathi_KS,
The api_key_secret
is set by the admin in the config.inc.php
file. The secret key ensures that a malicious user can not guess API Tokens.
You can generate it any way you’d like. Having a long random string is good. It’s possible you may be thinking of WordPress, which generate a bunch of “salts” (unique keys) for you? Something along those lines might be appropriate. This post provides some general advice for generating an appropriate API key: security - What's the best approach for generating a new API key? - Stack Overflow
Best regards,
Roger
PKP Team
1 Like