Obfusate, encrypt, protect API key within WP dashboard

[martymi]

The plugin settings at /wp-admin/options-general.php?page=mailgun holds a field for the mailgun API key. From using the plugin it appears the key is not obfuscated or encrypted, meaning if someone has access to the settings page they can see and appropriate the key.

Beyond API keys, perhaps oauth or similar authorization protocols could be used in the future for additional security.

Thanks for the consideration!