In their documentation, they mention storing the credentials (3 variables) in a 'secure' location. I'm not sure what they mean by that. Does that mean storing them outside of the public root and then including a file with that information at runtime? How else would you do that?