Deleting an API token

Deleting an API token means permanently removing the token from the system so that:
  • It no longer exists in the backend.
  • It cannot be recovered or re-enabled.
  • Any application or user that tries to use it will fail to authenticate (just like with deactivation).
Common reasons to delete an API token:
  • The token is no longer needed.
  • For security cleanup (e.g., unused tokens).
  • To comply with policies (e.g., rotating secrets regularly).
  • To prevent any future risk if the token is ever exposed.

Steps

  1. Once the API token is deactivated, the API token tile displays the Delete icon replacing the Deactivate icon. Click the Delete icon.

    A confirmation dialog opens.



  2. To delete the API token, click Delete.

    The API token gets deleted and removed from the External API page.