• Identity and Access Management

iam
  1. Help Center
  2. Identity and Access Management
  3. API Reference
  4. Token Management

Token Management

  • If a user sends a request to obtain a token without specifying the scope parameter, the user will obtain a user token without any permissions. The token cannot be used to invoke APIs that require authentication using a token with sufficient permissions. It can only be used to invoke APIs that require authentication with a user token, for example, the API described in Querying User Details.
  • When a user invokes an API with a token, the system only checks whether the token has sufficient permissions or is valid, and does not distinguish between a domain token and project token.