Key Features of Management Tokens

Management Tokens provide secure read-write access to the content of your stack. They act as credentials, used in combination with your stack API key, to make authorized Content Management API (CMA) requests for managing your stack's content.

Let’s look at the key features of Management Token:

• Stack-level token and not a user-specific token: One important aspect of a management token is that it’s a stack-level credential and not tied to any individual user. This means anyone with access to the token can use it to make authorized CMA requests.
• Provides access control: When generating a management token, you can define its access level. You can allow it to perform read-only actions or grant it both read and write access to content modules.
• Provision to set expiry: You can configure whether the management token should expire on a specific date or remain non-expiring, depending on your use case.
• Custom rate limits: Management tokens allow you to define custom rate limits, specifying the maximum number of read (GET) and write (POST, PUT, DELETE) requests permitted per second.
• Owners/admins can create: Only the stack owners or admins have the ability to create a management token, adding a layer of administrative control.

Additional Resource: Refer to the limitations document for more information.