Access Tokens
An access token is a unique key generated for a user account that allows actions to be performed by logging into the system on behalf of the user.
It is a key that can be created within a specific authorization framework, instead of sharing username and password information with another user. In the delegation system, while delegates perform operations for the replaced user, in operations performed with an access key, it appears as the original user's own operation.
Access tokens should not be confused with delegations. In delegations, delegation information is kept in the background. In other words, when a user performs a task or approves a process, this information is shown in the information flow history on behalf of the delegating user (e.g., "this person on behalf of this person"). Therefore, the difference between an access token and a delegation emerges here. Certain controls and validations can be provided in applications and processes accessed through delegation. The information of the people performing the operation can be shown in the process archive. Access tokens, on the other hand, express a situation where that user is directly replaced.
In the access tokens list, you can create, edit, regenerate, revoke, and delete access tokens. In this section, active and passive access tokens can be filtered, and bulk operations can be performed on them.
Revoke Access Token
To revoke an existing access token, the access token must be selected. When selected, the Revoke button will appear in the top menu. When the revoke button is clicked and the verification code is entered, the access token can be revoked. See Revoke Access Token documentation for more details.
Regenerate Access Token
If the access token code, which is active in the system, is forgotten, a new code can be generated. See Regenerate Access Token documentation for more details.
Create Access Token
To create an access token, click the New button in the access token list. In the opened screen, you can create an access token by selecting the access token list, start and end dates, and scope. See Create Access Token documentation for more details.
Delete Access Token
In the system, the Delete button will appear when a revoked delegation is selected in the passive list. Click the delete button to remove the delegation. See Delete Access Token documentation for more details.
Edit Access Token
To edit an existing access token, hover over the access token. Click the Edit button in the three-dot menu. In the window that opens, the authority information should be pre-filled. You can edit the name, start and end date, and authorization scope in the edit area. See Edit Access Token documentation for more details.
See Also
FAQs
- Revoked Access Token Reactivation
- Access Token Auto Renewal
- Access Token Login
- Access Token Date Range
- Forgotten Access Token
- Access Token Scopes