Access token
Overview
Access tokens are required to authenticate and use the Hellotime API. The access token is a “personal” key, meaning it is linked to an account and associated with a specific workspace.
The account must have the role of Owner, and currently, it does not have differentiated access permissions, allowing both reading and writing of data related to the workspace to which the token is associated. The account can generate multiple tokens, as many as there are workspaces for which it is the Owner, and each token will only allow access to the data associated with the workspace connected to that token.
Create an access token
To generate one or more access tokens, log in to the application at app.hellotime.io with an account linked to a workspace with the Owner role.
- Go to Preferences → API.
- Select the workspace you want to create the token for.
- The token is automatically copied to your clipboard.
Once you leave this screen, the token will no longer be displayed and it will not be possible to access it again. Therefore, save the token in a safe place before leaving the application, closing the modal, or switching the Preferences panel.
Revoke a token
In the “API” section of the Preferences, locate the workspace for which you want to remove access from the list of generated tokens and click “Revoke.” A confirmation modal will open, allowing you to cancel the operation or confirm the revocation.
Once a token is revoked, it can no longer be used.
Creating a new token for the same workspace will generate a different token. Any application using the revoked token will no longer have access to the workspace data