Should I keep Access Tokens secret?

andrey · November 20, 2017, 5:10pm

That’s not suggested. I would rather say- it’s highly recommended to not expose access tokens on public GitHub repositories and anywhere else.
We try to contact Contentful users on GitHub if see that they release Contentful access tokens publicly.

Topic		Replies	Views
Best security practices using Content Management API Content Management API	1	524	November 13, 2020
Managing Management Keys Content Management API	5	1105	January 22, 2018
CMA create Personal API token with roles Content Management API	1	671	February 21, 2020
Revoking other users' personal access tokens Content Management API	1	565	January 7, 2020
Token management and security Misc Technical Topics	0	184	April 12, 2023

Should I keep Access Tokens secret?

Related Topics