If I want to use API Secrets from a widely distributed SuiteApp, is the model: (1) That I create a secret in the UI of the account which publishes the SuiteApp and all accounts which install my SuiteApp get it automatically; OR (2) That in each account which installs my SuiteApp the admin needs to go and define the secret via the UI ?

AI generated answer (using internal Slack threads):

Based on the conversations, the model for using API Secrets from a widely distributed SuiteApp is closer to the second option you provided. In each account which installs your SuiteApp, the admin needs to go and define the secret via the UI. The API Secrets feature in NetSuite is designed to securely store sensitive data like API keys, passwords, and other credentials. However, these secrets cannot be read or retrieved programmatically using your own functions. They can only be accessed server-side using NetSuite's functions to use it in requests. When distributing a SuiteApp, you cannot distribute the client ID and client secret directly. Instead, you can encrypt the credentials using a secret managed by API Secrets. The encrypted credentials can be hardcoded in the source, and the distributed secret is used to decrypt them. Please note that you cannot create an API secret programmatically. The secret has to be created and managed through the "API Secrets" app in the NetSuite UI. ****** Disclaimer: This response was generated by an artificial intelligence assistant based on previous conversations from multiple Slack channels, and may contain inaccuracies or mistakes. ******