Skip to main content

API tokens

Creation

Enter an identifying name under "consumer_key". Under IP-filter one or multiple IP-addresses or IP-ranges can be specified. For API-requests, this IP-filter is imposed on the sender address of the HTTP request. With SSO connections the logins that are allowed are limited to valid IP addresses.

In addition, for each token the actions that are allowed with that particular key must be indicated. This is done with check marks under "Rights". The text at each check mark links to the documentation of the particular right.

After creation, the consumer_secret will be shown only once. Consider this as a password, and thus never send it unencrypted to colleagues. Ideally, the code would be copied straight from RoQua to the configuration of the target system.

Withdrawal

To ensure that a token no longer has access to RoQua, it can be withdrawn. Withdrawn tokens remain in the overview.