Personal API token security policy

The Personal API Token Security Policy controls whether Personal API tokens can be created, their maximum and default duration; and whether they are limited by an IP filter.

Personal API token security policy configuration showing Allow personal tokens checkbox, Token expiration settings with duration fields, and Enforce IP filter dropdown.

The following options can be set as part of the policy:

  • Allow personal tokens

    When enabled, users can access the Personal API token and create their API token. See Personal API Token for more information on creating tokens.

    When disabled, existing tokens will be deleted, and the option to create a Personal API token will no longer be available.

  • Token expiration

    When enabled, the system enforces a maximum duration for API tokens at creation. You cannot create API tokens with durations longer than the configured token expiration. The expiration can be expressed in the number of days, hours or minutes. See Behavior when changing token security policies for information on the effect of changing this setting.

  • Enforce IP filter

    When enabled, LogScale applies the selected IP filter to all requests made with a Personal API token. The token will only work when the IP filter has not blocked or restricted access. You can select a named IP filter from the list. For more information on creating named IP filters, see IP Filters.