For AI agents: a documentation index is available at the root level at /llms.txt and /llms-full.txt. Append /llms.txt to any URL for a page-level index, or .md for the markdown version of any page.
LoginGet Started
DocsAPI ReferenceChangelog
DocsAPI ReferenceChangelog
    • Home
  • Getting Started
  • Infrastructure
    • GPU VMs
    • Cloud VMs
    • Object Storage
    • Block Storage
  • Network & Security
    • Load Balancer
    • DNS
    • CDN
    • Firewalls
    • SSL Certificates
  • Tools
    • Backups
    • Snapshots
    • ISOs
    • SSH Keys
    • API Tokens
    • Secret Manager
    • Container Registry
  • Platform Fundamentals
    • Projects and tenancy model
    • IAM
    • Networking overview
    • Billing and usage
    • Limits and quotas
    • SLA and reliability
  • Tutorials
    • Deploy a web app
    • Host a static website with object storage
    • Run an AI model on a GPU VM
    • Set up a load-balanced architecture
    • Backup and disaster recovery
    • Multi-region deployment
  • Migration Guides
    • Migrate from AWS
    • Migrate from GCP
    • Migrate from Vultr and Linode
    • Move S3 workloads to IBEE Object Storage
    • VM image migration
  • Reference
    • Pricing
    • Regions
    • Limits
    • Error codes
    • Service level agreement
  • Support
    • Contact Support
    • Create a request
    • Troubleshooting guides
    • Visit ibee.ai
LogoLogo
LoginGet Started
On this page
  • Before you begin
  • Create a token
  • Manage tokens
  • Revoke a token
  • Troubleshooting
  • Related pages
Tools

API Tokens

Was this page helpful?
Edit this page
Previous

Secret Manager

Next
Built with

API tokens give you programmatic access to IBEE Cloud services. A token can be scoped to Object Storage, Billing, or both. Tokens with Object Storage access include S3 credentials for use with AWS CLI, rclone, and any S3-compatible tool.

Before you begin

  • An active IBEE Cloud project (Create a project)
  • A verified account (Verify your account)

Create a token

1

Go to API Tokens

In the IBEE Cloud portal, click API Tokens in the left sidebar under Tools.

This opens portal.ibee.ai/a/{project_id}/api-tokens.

2

Open the create dialog

Click + Create Token.

3

Enter token details

FieldRequiredDescription
NameYesIdentifies the token in the dashboard
DescriptionNoe.g., Used for production deployments
Expires In (days)NoBetween 1–365 days. Default: 90
4

Set permissions

Select at least one permission scope. Expand each to configure sub-permissions.

Object Storage

When Object Storage is checked, select a storage permission level:

PermissionWhat it allows
Admin Read & WriteCreate, list, delete buckets; edit bucket configuration; read, write, and list objects
Admin Read onlyList buckets; view configuration; read and list objects
Object Read & WriteRead, write, and list objects in specific buckets
Object Read onlyRead and list objects in specific buckets

Then choose which buckets the token applies to:

  • Apply to all buckets in this account (including newly created buckets)
  • Apply to specific buckets only

Selecting Object Storage generates S3 credentials alongside the Bearer Token. The Token will include preview at the bottom of the modal confirms:

  • Bearer Token (for REST API)
  • Access Key ID (for S3 API)
  • Secret Access Key (for S3 API)

Billing

When Billing is checked, select a billing permission level:

PermissionWhat it allows
Read onlyView invoices, orders, and account balance
5

Create the token

Click Create Token.

6

Save your credentials

The S3 Credentials Created panel shows your credentials immediately after creation:

CredentialFormatUse
Bearer Tokenibee_v4_...Authorization header for the IBEE REST API
Access Key IDAKIA...S3 credential for AWS CLI, rclone, and S3-compatible tools
Secret Access Key—S3 credential — shown once only
S3 Endpointhttps://{project_id}.blob.ibeestorage.comS3-compatible endpoint URL

Save these credentials now. The Secret Access Key won’t be shown again. Copy all values before closing this screen. If you lose the Secret Access Key, revoke the token and create a new one.

Manage tokens

Tokens appear in the API Tokens list with the following columns:

ColumnDescription
NAMEToken name
PRODUCTSPermissions granted (e.g. Object Storage, Billing)
CREATEDCreation date
EXPIRESExpiry date
STATUSActive / Expired
ACTIONSRevoke

Revoke a token

Click Revoke in the Actions column. Revoked tokens lose access immediately and cannot be restored — create a new token if access is needed again.

Troubleshooting

Create Token button is disabled At least one permission scope (Object Storage or Billing) must be selected.

Secret Access Key not saved The Secret Access Key is only shown once. Revoke the token and create a new one.

S3 authentication failing Verify you are using:

  • The correct S3 Endpoint: https://{project_id}.blob.ibeestorage.com
  • The Access Key ID and Secret Access Key from the same token creation

Token expired Tokens expire after the number of days set at creation (default 90, max 365). Revoke the old token and create a new one with a longer expiry if needed.

Related pages

  • Object Storage API Tokens
  • Create a bucket
  • Permissions and policies