Rotating an Access Token
Token rotation is a security best practice that involves regularly replacing old tokens with new ones in a system where tokens are used for authentication and authorization. This practice enhances security and maintains the integrity of access control mechanisms. Token rotation also enables organizations to quickly generate a new token if the existing token value is compromised. Revenera recommend to frequently rotate access tokens (the frequency will depend on your organization's security policies).
Token rotation means that a token's properties (expiry strategy, expiry time, issue time, type, name and user ID) are retained, but a new token value is created. No values can be changed.
If a token is rotated halfway through its lifetime, the token expiration time does not change. For example, if a token is created on January 1 with a lifetime of 30 days (Expiration Time "30d"), and the token is rotated on January 20, its expiration time of January 30 remains unchanged.
To rotate an access token
| 1. | Click Accounts & Users > Manage Access Tokens. The Manage Access Tokens page opens. |
| 2. | On the Manage Access Tokens page, select the checkbox of the token that you want to rotate. Click the Rotate Token button  . |
| 3. | When prompted, confirm that you want to change the token value. This opens the Refresh Token Value page. |
| 4. | The Refresh Token Value page shows new token value. Click Copy to copy and paste the value to a secure location of your choice. |
Note:When you rotate a token, only the token value is changed. To change other token attributes, you need to edit the token (see Editing an Access Token).
| 5. | Click Back to Manage Tokens to return to the Manage Access Tokens page. |
See also