.apc file was not intended to hold persistent credentials, i.e. username or password. When a user is authenticated using the APC client, a token is passed and recorded in the
.apc file and associated with the current target. As long as that token is valid and not yet expired, it will be used when APC commands are sent to the target’s API server. However, if expired, the client will need to re-authenticate.
I would recommend automating the login with each execution of your automated processes, refreshing the token each time. It would also be recommended to invalidate that session and sign out each time by ending with
Hope this helps.