Is it possible to hide token credentials when calling an external API?
Not with Webflow as it only supports client side JS.
it is also possible to hide the data of a call using some hash or
I’m trying to send the invitation submission form to the client through an invitation API. And for company security reasons, validations such as exposing data as a token would make security quite vulnerable.
Do you have any suggestions for this issue we are facing?
You could build your own endpoint set to receive a webhook from webflow and handle your processing as needed. You can also explore integrations with products like Zapier or Integromat for example. If this is all foreign to you consider hiring a developer.