API tokens
API tokens allow you to test the Front Core API or implement integrations or scripts that make programmatic updates to Front via the API. Once you have an API token, you can use it to authenticate Core API requests.
API tokens apply at a company level rather than being tied to a specific user, so anyone at your company with admin privileges will see the token you create.
You must be an admin to create or manage API tokens.
OAuth access versus API tokens
Front requires that partners implement OAuth instead of API tokens when building Core API integrations that make updates on behalf of a Front customer or their account, unless you obtain an exception from us. OAuth makes it easier for users to enable and use your integration by allowing users to simply authorize the app with an existing account. To learn more about this topic, refer to Authentication.
To learn how to configure OAuth, refer to the Create, manage, and publish apps topic.
Create an API token
- Go to Settings > Developers.
- Go to the API Tokens tab.
- Click Create API token.
- Specify an API token name.
Use an extremely descriptive name
Once you create a token and implement it, you may forget about it. Using a very detailed and specific token name will help you identify where the token is being used after it is created.
- Specify a token Scope. The token's scope determines what permissions the token has to carry out operations via the Core API. Refer to the Authentication topic to learn about the scopes available to your API token.
- Click Create.
View API token details
After creating an API token, you can view its details to obtain the token value and other useful information, such as who created the token and when.
- Go to Settings > Developers.
- Go to the API Tokens tab.
- Click an API token to open its details page.
- Click Reveal or Copy to obtain the API token value. Use this value to authenticate Core API requests.
- Note other useful fields about the token, such as who created it and what scope it has, to learn more about how the token is used.
Delete an API token.
You can delete any API token by completing the following steps. Note that deleting a token will immediately prevent any applications using the token from making requests to the Core API, so ensure the token is no longer needed because this operation cannot be undone.
- Go to Settings > Developers.
- Go to the API Tokens tab.
- Click an API token to open its details page.
- Click Delete.
Updated 17 days ago