Hi all, I've got a bit of a pickle here. Sorry so long: I have a script attached to address forms which is intended to do a lookup of the address to make sure it is a valid postcode etc. The service I'm using uses an API key. I do not want to store this key within the code itself for security, I would normally store this in an admin only parameter but there is no script record to do this with as the script is attached to the address form. There is seemingly no way to create a client script and apply to address records so can't do it that way. I thought maybe add a parameter as a company preference and store it in there and call from context but then I need the parameter available to all which defeats the point of trying to keep it hidden/secure. I thought keep it on an admin only custom record but to offload from the client side form script it would need to run through a Restlet and I don't want a custom record type for just one thing so I thought connect to one restle for the address lookup specifically and then to another one which handles api key lookup requests which would all be held on the same custom record BUT then I need to use full authentication which is a massive pain just to hide the key. I think I'm going to have to chuck everything into the one custom Restlet but I feel there must be a better/easier way of doing this I've missed. Any ideas??