Access tokens are used in token-based authentication to allow users access to your account’s API or dashboard by gathering and providing the required security data for clearance. Permissions are granted for defined functions and periods and can be deactivated when no longer needed. How access token work: users logs in to a system. It passes the access token as a credential when it calls the target API or dashboard component. The token notifies that the user is authorised to access and perform certain actions.
To generate a new Access Token:
- Go to Profile menu > Access Tokens > Create New.
- Select the required Permissions, give the Access Token a name in the Label field and set the expiry date and time under Expire In. Leave the field blank if you wish the Access Token to remain active indefinitely.
- Additionally, you can allow user access tokens only with specified Domain names (for UI only) and from specified IP addresses (for API and UI). You can add these parameters to the Whitelist Domains and Whitelist IPs fields.
- Click Create Token.
- Copy and share the token as it will not be available in the Dashboard afterwards.