Skip to content
EdgeFlags

Token Management

The Tokens page lets you manage API tokens for your project. This page requires admin (*) permission.

Token list

The list shows all tokens with:

  • Name — descriptive label for the token
  • Prefix — first 12 characters of the token for identification
  • Permissions — list of granted permissions
  • Created — when the token was created
  • Expires — expiration date if set

Session tokens (created during dashboard login) are hidden from this list.

Creating a token

  1. Click Create Token
  2. Enter a descriptive name (e.g., “CI/CD pipeline”, “Frontend read-only”)
  3. Select permissions:
    • read:flags — evaluate and list flags
    • read:configs — read config values
    • write:flags — create, update, delete flags and segments
    • write:configs — create, update, delete configs
    • * — full admin access
  4. Optionally set an expiration date
  5. Click Create

The plaintext token is displayed once. Copy it immediately — it cannot be retrieved again.

Revoking a token

  1. Find the token in the list
  2. Click Delete
  3. Confirm the revocation

Revoked tokens are immediately rejected by the API.