Managing Authorization Tokens

Code Insight 2021 R2

Code Insight uses a JSON Web Token (JWT) to authorize user access to the Code Insight public REST interface. You might be required to explicitly enter an authorization token for certain functionality that uses this REST interface directly (that is, not through Code Insight web UI), such as the following:

•

Project import and export processes (see the Exporting and Importing Project Data chapter)

•

The execution of remote scan agents (see Performing a Remote Scan)

Code Insight enables you to generate and manage one or more of these authorization tokens.

An authorization token is for use by the Code Insight user account that creates it. Thus, an authorization token that your user account generates will give you REST access to only the Code Insight functionality for which your account has permissions. Additionally, you can view and manage only those authorization tokens for the user account under which you are logged in.

Authorization tokens are created and managed from Preferences page, as described in the following procedures:

•

Accessing the Preferences Page

•

Generating an Authorization Token

•

Copying the Authorization Token to the Clipboard

•

Editing the Token Name

•

Deleting an Authorization Token

Managing Authorization Tokens

Code Insight 2021 R2 User Guide

May 2021