Closed. This question needs to be more
focused. It is not currently accepting answers.
Answer
Solution:
There are 4 ways to "hide" parameters from appearing in the developers tools:
1st (weakest) encode it
Depending on the algorithm, the data is unreadable afterwards but can easily be decoded to the plaintext
2st Hash the data
The data is unreadable afterwards but you cannot read it yourself too.
3rd Encrypt data
Requires passwords / keys to be sent, leaving you with a dilemma.
4th and probably strongest: Don't send the data at all
Store the secret on the server and link it to the public session id.
Source