Create Personal Access Token

POST /auth/pats

Create a new personal access token for the caller

User action signature required. See User Action Signing for more information.
Request headers required. See Request Headers for more information.
Authentication required. See Authentication Headers for more information.

Required Permissions

Name Conditions

Name	Conditions
`Auth:Users:Create`	Always Required
`Auth:Types:Pat`	Always Required

Auth:Users:Create

Always Required

Auth:Types:Pat

Always Required

Request Body

Property Type Description

Property	Type	Description
`name` *	String	the name of the personal access token, must be unique for the caller
`publicKey` *	String	public key that can be used to validate signatures generated by the personal access token
`secondsValid`	Integer	`Optional` number of seconds the personal access token will be valid. If this is specified, `daysValid` will be ignored.
`daysValid`	Integer	`Optional` number of days the personal access token will be valid. Max is `730`. If `secondsValid` is specified, `daysValid` will be ignored.
`permissionId`	String	`Optional` ID of the permission that will be assigned to the personal access token. If no permission ID is given, the personal access token will be assigned the same permissions as the caller
`externalId`	String	`Optional` user defined value that can be used to correlate the entity with an external system

name *

String

the name of the personal access token, must be unique for the caller

publicKey *

String

public key that can be used to validate signatures generated by the personal access token

secondsValid

Integer

Optional number of seconds the personal access token will be valid. If this is specified, daysValid will be ignored.

daysValid

Integer

Optional number of days the personal access token will be valid. Max is 730. If secondsValid is specified, daysValid will be ignored.

permissionId

String

Optional ID of the permission that will be assigned to the personal access token. If no permission ID is given, the personal access token will be assigned the same permissions as the caller

externalId

String

Optional user defined value that can be used to correlate the entity with an external system

Example

{
  "name": "My PAT",
  "publicKey": "-----BEGIN PUBLIC KEY-----\nMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEZQt0YI2hdsFNmKJesSkAHldyPLIV\nFLI/AhQ5eGasA7jU8tEXOb6nGvxRaTIXrgZ2NPdk78O8zMqz5u9AekH8jA==\n-----END PUBLIC KEY-----",
  "daysValid": 365,
  "permissionId": "pm-delaw-avoca-v16r37fpp8koqebc"
}

Responses

See Common Errors for common errors.
See Personal Access Token Management Errors for personal access token management specific errors.

Success - The created personal access token

{
  "accessToken": "eyJ0eXAi...ulSXs3-5_NFOyFXJUSyUOQ",
  "dateCreated": "2023-04-12T03:38:05.595Z",
  "credId": "",
  "isActive": true,
  "kind": "CustomerEmployee",
  "linkedUserId": "us-24vwa-92s33-8tvqi1dg0a95megt",
  "linkedAppId": "",
  "name": "My new personal access token",
  "orgId": "or-yanke-mars-6ulofamogg8fs87v",
  "permissionAssignments": [
    {
      "permissionId": "pm-lit-yanke-46bfekf1548aeph4",
      "permissionName": "WalletAdmin",
      "assignmentId": "",
      "operations": [
        "Auth:Action:Sign",
        "Auth:Apps:Read",
        "Auth:Types:Application",
        "Auth:Types:Employee",
        "Auth:Types:EndUser",
        "Auth:Types:Pat",
        "Auth:Types:ServiceAccount",
        "Auth:Users:Read",
        "Balances:Read",
        "Payments:Create",
        "Payments:Read",
        "PublicKeyAddresses:Read",
        "PublicKeys:Create",
        "PublicKeys:Read",
        "Signatures:Create",
        "Signatures:Read",
        "Transactions:Create",
        "Transactions:Read",
        "Wallets:Create",
        "Wallets:Read",
        "Wallets:Update"
      ]
    }
  ],
  "publicKey": "",
  "tokenId": "to-5kwgq-oegi0-879o3v4uh9ghhq72"
}

Last updated 2 months ago