Managing OAuth Access Tokens
Access tokens are revocable, bearer security tokens that allow access to specific resources. They are passed in each REST request as an authorization header by using the Bearer scheme.
Example header:
Authorization: Bearer access_token
Features of Access Tokens
-
An access token is applicable in only the region where it is generated. It is applicable to both TIBCO Control Plane and all data planes in that region.
-
An access token can be viewed only once at the time you generate it. Store it securely for future use.
-
Access tokens expire at a preconfigured time. You can replace them by generating a new one. You can do so by using the UI.
-
Removing a user automatically revokes all access tokens generated by that user.
-
All tokens that are generated by you are revoked when your TIBCO Control Plane subscription expires or when your TIBCO Control Plane account is deleted.