open-vault/website/content/docs/auth/token.mdx

---
layout: docs
page_title: Token - Auth Methods
description: The token store auth method is used to authenticate using tokens.
---

# Token auth method

The `token` auth method is built-in and automatically available at `/auth/token`. It
allows users to authenticate using a token, as well to create new tokens, revoke
secrets by token, and more.

When any other auth method returns an identity, Vault core invokes the
token method to create a new unique token for that identity.

The token store can also be used to bypass any other auth method:
you can create tokens directly, as well as perform a variety of other
operations on tokens such as renewal and revocation.

Please see the [token concepts](/vault/docs/concepts/tokens) page dedicated
to tokens.

## Authentication

### Via the CLI

```shell-session
$ vault login token=<token>
```

### Via the API

The token is set directly as a header for the HTTP API. The header should be
either `X-Vault-Token: <token>` or `Authorization: Bearer <token>`.

## API

The Token auth method has a full HTTP API. Please see the
[Token auth method API](/vault/api-docs/auth/token) for more
details.
website: token auth help 2015-04-18 20:35:55 +00:00			`---`
New Website! (#8154) * new documentation website * ci job adjustment * update to latest version on downloads page * remove transition-period scripts * add netlify toml file * fix docs patch * fix ci config? * revert go.mod changes * a couple last markdown formatting fixes 2020-01-18 00:18:09 +00:00			`layout: docs`
			`page_title: Token - Auth Methods`
			`description: The token store auth method is used to authenticate using tokens.`
website: token auth help 2015-04-18 20:35:55 +00:00			`---`

Backport of [docs] Convert titles to sentense case into 1.14.x (#21921) 2023-07-18 21:07:55 +00:00			`# Token auth method`
website: token auth help 2015-04-18 20:35:55 +00:00
auth/okta: documents API token minimal permissions (#15566) 2022-05-23 21:57:14 +00:00			The `token` auth method is built-in and automatically available at `/auth/token`. It
Standardize on "auth method" This removes all references I could find to: - credential provider - authentication backend - authentication provider - auth provider - auth backend in favor of the unified: - auth method 2017-09-13 01:48:52 +00:00			`allows users to authenticate using a token, as well to create new tokens, revoke`
website: token auth help 2015-04-18 20:35:55 +00:00			`secrets by token, and more.`

Standardize on "auth method" This removes all references I could find to: - credential provider - authentication backend - authentication provider - auth provider - auth backend in favor of the unified: - auth method 2017-09-13 01:48:52 +00:00			`When any other auth method returns an identity, Vault core invokes the`
			`token method to create a new unique token for that identity.`
website: token auth help 2015-04-18 20:35:55 +00:00
Standardize on "auth method" This removes all references I could find to: - credential provider - authentication backend - authentication provider - auth provider - auth backend in favor of the unified: - auth method 2017-09-13 01:48:52 +00:00			`The token store can also be used to bypass any other auth method:`
website: token auth help 2015-04-18 20:35:55 +00:00			`you can create tokens directly, as well as perform a variety of other`
			`operations on tokens such as renewal and revocation.`

docs: Migrate link formats (#18696) * Adding check-legacy-links-format workflow * Adding test-link-rewrites workflow * Updating docs-content-check-legacy-links-format hash * Migrating links to new format Co-authored-by: Kendall Strautman <kendallstrautman@gmail.com> 2023-01-26 00:12:15 +00:00			`Please see the [token concepts](/vault/docs/concepts/tokens) page dedicated`
website: token auth help 2015-04-18 20:35:55 +00:00			`to tokens.`

			`## Authentication`

API Docs updates (#3101) 2017-08-08 16:28:17 +00:00			`### Via the CLI`
website: token auth help 2015-04-18 20:35:55 +00:00
🌷 Docs Website Maintenance (#8985) * website maintenance round * improve docs, revert bug workaround as it was fixed * boost memory * remove unnecessary code 2020-05-21 17:18:17 +00:00			```shell-session
Standardize on "auth method" This removes all references I could find to: - credential provider - authentication backend - authentication provider - auth provider - auth backend in favor of the unified: - auth method 2017-09-13 01:48:52 +00:00			`$ vault login token=<token>`
website: token auth help 2015-04-18 20:35:55 +00:00			```

API Docs updates (#3101) 2017-08-08 16:28:17 +00:00			`### Via the API`
website: token auth help 2015-04-18 20:35:55 +00:00
add mentions of authorization header support in doc (#5478) 2018-10-17 14:38:15 +00:00			`The token is set directly as a header for the HTTP API. The header should be`
			either `X-Vault-Token: <token>` or `Authorization: Bearer <token>`.
website: token auth help 2015-04-18 20:35:55 +00:00
			`## API`

Standardize on "auth method" This removes all references I could find to: - credential provider - authentication backend - authentication provider - auth provider - auth backend in favor of the unified: - auth method 2017-09-13 01:48:52 +00:00			`The Token auth method has a full HTTP API. Please see the`
docs: Migrate link formats (#18696) * Adding check-legacy-links-format workflow * Adding test-link-rewrites workflow * Updating docs-content-check-legacy-links-format hash * Migrating links to new format Co-authored-by: Kendall Strautman <kendallstrautman@gmail.com> 2023-01-26 00:12:15 +00:00			`[Token auth method API](/vault/api-docs/auth/token) for more`
API Docs updates (#3101) 2017-08-08 16:28:17 +00:00			`details.`