@mayerlench it looks like your approach would expose NS credentials client side?