# Create access token
POST https://app.launchdarkly.com/api/v2/tokens
Content-Type: application/json
Create a new access token.
Reference: https://launchdarkly.com/docs/api/access-tokens/post-token
## OpenAPI Specification
```yaml
openapi: 3.1.0
info:
title: LaunchDarkly REST API
version: 1.0.0
paths:
/api/v2/tokens:
post:
operationId: post-token
summary: Create access token
description: Create a new access token.
tags:
- subpackage_accessTokens
parameters:
- name: Authorization
in: header
required: true
schema:
type: string
responses:
'201':
description: Access token response
content:
application/json:
schema:
$ref: '#/components/schemas/Token'
'400':
description: Invalid request
content:
application/json:
schema:
$ref: '#/components/schemas/InvalidRequestErrorRep'
'401':
description: Invalid access token
content:
application/json:
schema:
$ref: '#/components/schemas/UnauthorizedErrorRep'
'403':
description: Forbidden
content:
application/json:
schema:
$ref: '#/components/schemas/ForbiddenErrorRep'
'429':
description: Rate limited
content:
application/json:
schema:
$ref: '#/components/schemas/RateLimitedErrorRep'
requestBody:
content:
application/json:
schema:
$ref: '#/components/schemas/AccessTokenPost'
servers:
- url: https://app.launchdarkly.com
- url: https://app.launchdarkly.us
components:
schemas:
AccessTokenPostRole:
type: string
enum:
- reader
- writer
- admin
description: Base role for the token
title: AccessTokenPostRole
ActionSpecifier:
type: string
title: ActionSpecifier
StatementPostEffect:
type: string
enum:
- allow
- deny
description: Whether this statement should allow or deny actions on the resources.
title: StatementPostEffect
StatementPost:
type: object
properties:
resources:
type: array
items:
type: string
description: Resource specifier strings
notResources:
type: array
items:
type: string
description: >-
Targeted resources are the resources NOT in this list. The
resources field must be empty to use this field.
actions:
type: array
items:
$ref: '#/components/schemas/ActionSpecifier'
description: Actions to perform on a resource
notActions:
type: array
items:
$ref: '#/components/schemas/ActionSpecifier'
description: >-
Targeted actions are the actions NOT in this list. The
actions field must be empty to use this field.
effect:
$ref: '#/components/schemas/StatementPostEffect'
description: >-
Whether this statement should allow or deny actions on the
resources.
required:
- effect
title: StatementPost
AccessTokenPost:
type: object
properties:
name:
type: string
description: A human-friendly name for the access token
description:
type: string
description: A description for the access token
role:
$ref: '#/components/schemas/AccessTokenPostRole'
description: Base role for the token
customRoleIds:
type: array
items:
type: string
description: >-
A list of custom role IDs to use as access limits for the access
token
inlineRole:
type: array
items:
$ref: '#/components/schemas/StatementPost'
description: >-
A JSON array of statements represented as JSON objects with three
attributes: effect, resources, actions. May be used in place of a
role.
serviceToken:
type: boolean
description: Whether the token is a service token
defaultApiVersion:
type: integer
description: The default API version for this token
title: AccessTokenPost
ObjectId:
type: string
title: ObjectId
Link:
type: object
properties:
href:
type: string
description: The URL of the link
type:
type: string
description: The type of the link
title: Link
MemberSummary:
type: object
properties:
_links:
type: object
additionalProperties:
$ref: '#/components/schemas/Link'
description: The location and content type of related resources
_id:
type: string
description: The member's ID
firstName:
type: string
description: The member's first name
lastName:
type: string
description: The member's last name
role:
type: string
description: >-
The member's base role. If the member has no additional roles, this
role will be in effect.
email:
type: string
description: The member's email address
required:
- _links
- _id
- role
- email
title: MemberSummary
UnixMillis:
type: integer
format: int64
title: UnixMillis
StatementEffect:
type: string
enum:
- allow
- deny
description: Whether this statement should allow or deny actions on the resources.
title: StatementEffect
Statement:
type: object
properties:
resources:
type: array
items:
type: string
description: Resource specifier strings
notResources:
type: array
items:
type: string
description: >-
Targeted resources are the resources NOT in this list. The
resources and notActions fields must be
empty to use this field.
actions:
type: array
items:
$ref: '#/components/schemas/ActionSpecifier'
description: Actions to perform on a resource
notActions:
type: array
items:
$ref: '#/components/schemas/ActionSpecifier'
description: >-
Targeted actions are the actions NOT in this list. The
actions and notResources fields must be
empty to use this field.
effect:
$ref: '#/components/schemas/StatementEffect'
description: >-
Whether this statement should allow or deny actions on the
resources.
required:
- effect
title: Statement
Token:
type: object
properties:
_id:
$ref: '#/components/schemas/ObjectId'
description: The ID of the access token
ownerId:
$ref: '#/components/schemas/ObjectId'
description: The ID of the owner of the account for the access token
memberId:
$ref: '#/components/schemas/ObjectId'
description: The ID of the member who created the access token
_member:
$ref: '#/components/schemas/MemberSummary'
description: Details on the member who created the access token
name:
type: string
description: A human-friendly name for the access token
description:
type: string
description: A description for the access token
creationDate:
$ref: '#/components/schemas/UnixMillis'
description: Timestamp of when the access token was created
lastModified:
$ref: '#/components/schemas/UnixMillis'
description: Timestamp of the last modification of the access token
customRoleIds:
type: array
items:
$ref: '#/components/schemas/ObjectId'
description: >-
A list of custom role IDs to use as access limits for the access
token
inlineRole:
type: array
items:
$ref: '#/components/schemas/Statement'
description: >-
An array of policy statements, with three attributes: effect,
resources, actions. May be used in place of a role.
role:
type: string
description: Base role for the token
token:
type: string
description: >-
The token value. When creating or resetting, contains the entire
token value. Otherwise, contains the last four characters.
serviceToken:
type: boolean
description: Whether this is a service token or a personal token
_links:
type: object
additionalProperties:
$ref: '#/components/schemas/Link'
description: The location and content type of related resources
defaultApiVersion:
type: integer
description: The default API version for this token
lastUsed:
$ref: '#/components/schemas/UnixMillis'
description: Timestamp of when the access token was last used
required:
- _id
- ownerId
- memberId
- creationDate
- lastModified
- _links
title: Token
InvalidRequestErrorRep:
type: object
properties:
code:
type: string
description: Specific error code encountered
message:
type: string
description: Description of the error
required:
- code
- message
title: InvalidRequestErrorRep
UnauthorizedErrorRep:
type: object
properties:
code:
type: string
description: Specific error code encountered
message:
type: string
description: Description of the error
required:
- code
- message
title: UnauthorizedErrorRep
ForbiddenErrorRep:
type: object
properties:
code:
type: string
description: Specific error code encountered
message:
type: string
description: Description of the error
required:
- code
- message
title: ForbiddenErrorRep
RateLimitedErrorRep:
type: object
properties:
code:
type: string
description: Specific error code encountered
message:
type: string
description: Description of the error
required:
- code
- message
title: RateLimitedErrorRep
securitySchemes:
ApiKey:
type: apiKey
in: header
name: Authorization
```
## SDK Code Examples
```python
import requests
url = "https://app.launchdarkly.com/api/v2/tokens"
payload = { "role": "reader" }
headers = {
"Authorization": "",
"Content-Type": "application/json"
}
response = requests.post(url, json=payload, headers=headers)
print(response.json())
```
```javascript
const url = 'https://app.launchdarkly.com/api/v2/tokens';
const options = {
method: 'POST',
headers: {Authorization: '', 'Content-Type': 'application/json'},
body: '{"role":"reader"}'
};
try {
const response = await fetch(url, options);
const data = await response.json();
console.log(data);
} catch (error) {
console.error(error);
}
```
```go
package main
import (
"fmt"
"strings"
"net/http"
"io"
)
func main() {
url := "https://app.launchdarkly.com/api/v2/tokens"
payload := strings.NewReader("{\n \"role\": \"reader\"\n}")
req, _ := http.NewRequest("POST", url, payload)
req.Header.Add("Authorization", "")
req.Header.Add("Content-Type", "application/json")
res, _ := http.DefaultClient.Do(req)
defer res.Body.Close()
body, _ := io.ReadAll(res.Body)
fmt.Println(res)
fmt.Println(string(body))
}
```
```ruby
require 'uri'
require 'net/http'
url = URI("https://app.launchdarkly.com/api/v2/tokens")
http = Net::HTTP.new(url.host, url.port)
http.use_ssl = true
request = Net::HTTP::Post.new(url)
request["Authorization"] = ''
request["Content-Type"] = 'application/json'
request.body = "{\n \"role\": \"reader\"\n}"
response = http.request(request)
puts response.read_body
```
```java
import com.mashape.unirest.http.HttpResponse;
import com.mashape.unirest.http.Unirest;
HttpResponse response = Unirest.post("https://app.launchdarkly.com/api/v2/tokens")
.header("Authorization", "")
.header("Content-Type", "application/json")
.body("{\n \"role\": \"reader\"\n}")
.asString();
```
```php
request('POST', 'https://app.launchdarkly.com/api/v2/tokens', [
'body' => '{
"role": "reader"
}',
'headers' => [
'Authorization' => '',
'Content-Type' => 'application/json',
],
]);
echo $response->getBody();
```
```csharp
using RestSharp;
var client = new RestClient("https://app.launchdarkly.com/api/v2/tokens");
var request = new RestRequest(Method.POST);
request.AddHeader("Authorization", "");
request.AddHeader("Content-Type", "application/json");
request.AddParameter("application/json", "{\n \"role\": \"reader\"\n}", ParameterType.RequestBody);
IRestResponse response = client.Execute(request);
```
```swift
import Foundation
let headers = [
"Authorization": "",
"Content-Type": "application/json"
]
let parameters = ["role": "reader"] as [String : Any]
let postData = JSONSerialization.data(withJSONObject: parameters, options: [])
let request = NSMutableURLRequest(url: NSURL(string: "https://app.launchdarkly.com/api/v2/tokens")! as URL,
cachePolicy: .useProtocolCachePolicy,
timeoutInterval: 10.0)
request.httpMethod = "POST"
request.allHTTPHeaderFields = headers
request.httpBody = postData as Data
let session = URLSession.shared
let dataTask = session.dataTask(with: request as URLRequest, completionHandler: { (data, response, error) -> Void in
if (error != nil) {
print(error as Any)
} else {
let httpResponse = response as? HTTPURLResponse
print(httpResponse)
}
})
dataTask.resume()
```