I have recently been working on a server-side app and I needed to externalise some configuration. I’m using Twitter’s REST API and I wanted my API access-token and secret to be kept outside of the code.