Authentication
Every API request must include a valid platform API token. Tokens use Bearer authentication and are scoped to your organization.
Create an API token
- Log in to the IBEE portal.
- Go to Settings → Platform API Tokens.
- Click Create Token.
- Give the token a name, select the scopes it needs, and choose a workspace policy.
- Click Create. Copy the token immediately — it is shown only once.
Store your token securely. If you lose it, revoke it and create a new one.
Using your token
Include the token in the Authorization header as a Bearer token:
Tokens follow the format ibee_live_xxx for production or ibee_test_xxx for test environments.
Scopes
Each token is granted specific scopes that control which resources it can access. Select the minimum scopes your integration needs.
A request to an endpoint that requires a scope the token does not have returns 403 Forbidden.
Workspace policies
When you create a token, you choose how it accesses workspaces:
Use Specific workspaces when you want to limit a CI/CD pipeline or integration to a single environment (for example, only staging).
Revoking tokens
To revoke a token:
- Go to Settings → Platform API Tokens in the portal.
- Find the token and click Revoke.
Revoked tokens are rejected immediately on all subsequent requests.
