AccessToken
An access token's metadata, without the raw token value.
Use this type to list, inspect, and manage existing tokens. The full token value is only
available at creation time — if you need to identify a specific token, use its prefix
(e.g., md_a1b2c3d4).
Token states:
- Active —
revokedAtisnullandexpiresAtis in the future. - Expired —
expiresAtis in the past. The token no longer works. - Revoked —
revokedAtis set. The token was manually disabled and no longer works.
type AccessToken {
id: ID!
name: String!
prefix: String!
scopes: [String!]!
expiresAt: DateTime!
revokedAt: DateTime
lastUsedAt: DateTime
createdAt: DateTime!
}
Fields
AccessToken.id ● ID! non-null scalar {#id}
Unique identifier for this access token.
AccessToken.name ● String! non-null scalar {#name}
Human-readable label for identifying this token.
AccessToken.prefix ● String! non-null scalar {#prefix}
A short, non-secret prefix (e.g., md_a1b2c3d4) used to identify this token in lists and logs without exposing the full value.
AccessToken.scopes ● [String!]! non-null scalar {#scopes}
Permission scopes that limit what this token can do.
AccessToken.expiresAt ● DateTime! non-null scalar {#expires-at}
When this token expires and stops working (UTC).
AccessToken.revokedAt ● DateTime scalar {#revoked-at}
When this token was manually revoked, or null if still active.
AccessToken.lastUsedAt ● DateTime scalar {#last-used-at}
When this token was last used to authenticate an API request, or null if never used.
AccessToken.createdAt ● DateTime! non-null scalar {#created-at}
When this token was created (UTC).
Member Of
AccessTokenPayload object