An API token is a standard JWT token that can be used to invoke the API, programmatically, or to register a sensor on behalf of a user.
When creating an API token, the user can specify information such as name, scope, what the scope can do, the expiration time, and so on.
Select Settings > API, then click New.
The Add API Access Token window appears.
- Enter a Name.
Scopes define the actions that the API token can take. Available scopes are:
- Analytics Query
- Content Management
- Risk Model Management
- Sensor Management
- Sensor Registration
Auditing an API token reveals ...
Select Settings > API, then click Audit for the API token that you want to audit.
You can make an API token inactive if you want to temporarily inactivate it without revoking it.
Select Settings > API, then click Make inactive for the API token that you want to make inactive.
Revoke an API token if you have no further use for it.
Select Settings > API, then click Revoke for the API token that you want to revoke.