Tokens overview
Alpacon provides two types of tokens for different purposes: API access tokens for programmatic API access, and server registration tokens for automated server onboarding.
Token types
| Feature | API access token | Server registration token |
|---|---|---|
| Purpose | Programmatic API access for CI/CD and automation | Automated server registration |
Common behaviors
Token key visibility
The token key is displayed only once at the time of creation. After leaving the page, it cannot be retrieved again.
Expiration presets
When creating a token, you can choose from the following expiration options:
- 7 days
- 30 days
- 60 days
- 90 days
- 1 year
- Custom date
- No expiration—Tokens without an expiration date pose a security risk. We recommend setting an expiration date and rotating tokens on a regular basis.
Related documentation
- API access token—Manage API tokens with scoped permissions
- Server registration token—Manage tokens for automated server onboarding
- Register a server—Server registration methods including token-based registration
- API reference: Tokens—REST API endpoints for token management