This article describes how to add API tokens to your ActivityInfo account, and how to deactivate tokens.
If you are accessing your ActivityInfo data through the API, or through a third-party application such as Power BI, you need to generate an API token. To do so, follow these steps:
- Click on the user profile and select “Account settings.”
- Select “API tokens” on the left navigation panel.
- Click “Add.”
- Name the token by filling in the Label field. It is good practice to name each application and device combination with a unique label to ensure you know which one to remove when finished with the application.
- Choose the scope of the token by selecting “Read-only” or “Read & Write.”
- “Read-only”: allows external applications to only read data in your account. The application cannot add, change, or delete Records in your Databases.
- “Read & Write”: allows external applications to not only read your data, but also to modify it by adding, editing, or deleting Records in your Databases.
A token can only limit actions in your account, therefore if you do not have the permission to edit records in a Form, then a token with a “Read & write” scope in your account does not allow an external application to edit Records either.
- Click “Generate.”
- Copy the API token by clicking “Copy to clipboard.” Once you leave this page, you are no longer able to see or copy the token!
We strongly recommend that you copy and paste the API token into a note or file.
Revoking an API token
When you no longer need a token, revoke it as soon as possible. To do so, follow these steps:
- Click on the user profile and select “Account settings.”
- Select “API tokens” on the left navigation panel.
- Select the token you want to revoke.
- Click the “Revoke token” button in the panel on the right side panel.
It takes about 5 minutes for the token to be indefinitely removed from our systems. After that, any application using this token will no longer be able to access the data in your account.
A revoked token cannot be restored.