Access Tokens

In addition to human accesses - as an operator access - the platform also supports service accesses, so that services can interact with the platform on behalf of someone or something that does not have an account in the platform. For example, a mobile application that anyone can download and use, or a software service that allows other services to use the EVRYTHNG product cloud platform in a way the service creator desires.

These interactions are not on behalf of authorised and signed Operators, but of anonymous users through the authorised service. This is is the purpose of service accesses, called Access Tokens.

Access tokens limit

An account is allowed a maximum of 100 Access Tokens.

The Access Tokens API allows the creation and management of access tokens. A given service signed into our platform and part of a certain account will have a service API Key that is unique per account.

Through the Access Tokens API Operators with allowed roles are able to create new Access Tokens for their accounts, assign roles and apply attribute based restrictions on each access token, so that services can only access data relevant to their context.

Upon creation of access tokens, their names, access policies and restrictive conditions must be provided. This will qualify their access in the platform.


API Status General Availability: /accessTokens

AccessTokenDocument Data Model

An object representing an access token.

.name (string, required)
    The name of the access token.

.description (string)
    The description of the access token.  Which services this 
    token might be applied to.

.policies (array of string, max. 100, required)
    An array of policy IDs

.conditions (array of string, max. 256, required)
    A conditions array.

.tags (array of string)
    Array of string tags associated with this resource.

.identifiers (IdentifiersDocument)
    Various identifiers (EPC, GTIN, etc.) as a JSON object with 
    one or more key-value pairs.

.customFields (CustomFieldsDocument)
    Object of case-sensititve key-value pairs of custom fields 
    associated with the resource.

.apiKey (string)
    80 base64 characters length string to use to interact with the API.
    

Filterable Fields

This resource type can be filtered using the following fields and operators.

Field Type Operators Example

ids

String

=

/accessTokens?filter=ids=VwwSgFqb9mdp6Qawxxxwceqk

policies

String

=

/accessTokens?filter=policies=UPb7E6shapktcaaabfahfpds

conditions

String

=

/accessTokens?filter=conditions=factoryId:20202020


Create an access token

Creates an access token for given account.


Read service access tokens

Read all service accesses for an account