- The API key field must be masked or hidden after saving to prevent exposure.
- Upon saving a valid API key, the integration must automatically call the Installation endpoint to activate the integration.
- Extract and securely store the associated Company ID from the API response.
- Display the Company ID to the user for confirmation.
- Surface connection errors clearly if installation or company association fails.
API Keys
Secure Storage and Activation
Integrations must provide a secure mechanism for storing API keys.
Requirements: