open-vault/website/pages/docs/auth/token.mdx

42 lines
1.1 KiB
Plaintext
Raw Normal View History

2015-04-18 20:35:55 +00:00
---
layout: docs
page_title: Token - Auth Methods
sidebar_title: Tokens
description: The token store auth method is used to authenticate using tokens.
2015-04-18 20:35:55 +00:00
---
# Token Auth Method
2015-04-18 20:35:55 +00:00
The `token` method is built-in and automatically available at `/auth/token`. It
allows users to authenticate using a token, as well to create new tokens, revoke
2015-04-18 20:35:55 +00:00
secrets by token, and more.
When any other auth method returns an identity, Vault core invokes the
token method to create a new unique token for that identity.
2015-04-18 20:35:55 +00:00
The token store can also be used to bypass any other auth method:
2015-04-18 20:35:55 +00:00
you can create tokens directly, as well as perform a variety of other
operations on tokens such as renewal and revocation.
2015-04-18 20:45:50 +00:00
Please see the [token concepts](/docs/concepts/tokens.html) page dedicated
2015-04-18 20:35:55 +00:00
to tokens.
## Authentication
2017-08-08 16:28:17 +00:00
### Via the CLI
2015-04-18 20:35:55 +00:00
```text
$ vault login token=<token>
2015-04-18 20:35:55 +00:00
```
2017-08-08 16:28:17 +00:00
### Via the API
2015-04-18 20:35:55 +00:00
The token is set directly as a header for the HTTP API. The header should be
either `X-Vault-Token: <token>` or `Authorization: Bearer <token>`.
2015-04-18 20:35:55 +00:00
## API
The Token auth method has a full HTTP API. Please see the
[Token auth method API](/api/auth/token/index.html) for more
2017-08-08 16:28:17 +00:00
details.