Get a Personal-Access-Token (PAT) by ID

Returns the PAT for a user, currently only available for machine users/service accounts. PATs are ready-to-use tokens and can be sent directly in the authentication header.

Path Parameters

userId string required
tokenId string required

Header Parameters

x-zitadel-orgid string

The default is always the organization of the requesting user. If you like to get a user from another organization include the header. Make sure the requesting user has permission in the requested organization.

Responses

• 200
• default

---

OK

application/json

application/grpc

application/grpc-web+proto

Schema

Example (from schema)

---

Schema

token object

id string

details object

sequence uint64

on read: the sequence of the last event reduced by the projection

on manipulation: the timestamp of the event(s) added by the manipulation

creationDate date-time

on read: the timestamp of the first event of the object

on create: the timestamp of the event(s) added by the manipulation

changeDate date-time

on read: the timestamp of the last event reduced by the projection

on manipulation: the

resourceOwner resource_owner is the organization an object belongs to

expirationDate date-time

the date the token will expire

scopes string[]

scopes granted to the token

{
  "token": {
    "id": "69629023906488334",
    "details": {
      "sequence": "2",
      "creationDate": "2024-05-03T06:37:37.026Z",
      "changeDate": "2024-05-03T06:37:37.026Z",
      "resourceOwner": "69629023906488334"
    },
    "expirationDate": "3019-04-01T08:45:00.000000Z",
    "scopes": [
      "openid"
    ]
  }
}

Schema

Example (from schema)

---

Schema

token object

id string

details object

sequence uint64

on read: the sequence of the last event reduced by the projection

on manipulation: the timestamp of the event(s) added by the manipulation

creationDate date-time

on read: the timestamp of the first event of the object

on create: the timestamp of the event(s) added by the manipulation

changeDate date-time

on read: the timestamp of the last event reduced by the projection

on manipulation: the

resourceOwner resource_owner is the organization an object belongs to

expirationDate date-time

the date the token will expire

scopes string[]

scopes granted to the token

{
  "token": {
    "id": "69629023906488334",
    "details": {
      "sequence": "2",
      "creationDate": "2024-05-03T06:37:37.027Z",
      "changeDate": "2024-05-03T06:37:37.027Z",
      "resourceOwner": "69629023906488334"
    },
    "expirationDate": "3019-04-01T08:45:00.000000Z",
    "scopes": [
      "openid"
    ]
  }
}

Schema

Example (from schema)

---

Schema

token object

id string

details object

sequence uint64

on read: the sequence of the last event reduced by the projection

on manipulation: the timestamp of the event(s) added by the manipulation

creationDate date-time

on read: the timestamp of the first event of the object

on create: the timestamp of the event(s) added by the manipulation

changeDate date-time

on read: the timestamp of the last event reduced by the projection

on manipulation: the

resourceOwner resource_owner is the organization an object belongs to

expirationDate date-time

the date the token will expire

scopes string[]

scopes granted to the token

{
  "token": {
    "id": "69629023906488334",
    "details": {
      "sequence": "2",
      "creationDate": "2024-05-03T06:37:37.027Z",
      "changeDate": "2024-05-03T06:37:37.027Z",
      "resourceOwner": "69629023906488334"
    },
    "expirationDate": "3019-04-01T08:45:00.000000Z",
    "scopes": [
      "openid"
    ]
  }
}

An unexpected error response.

application/json

application/grpc

application/grpc-web+proto

Schema

Example (from schema)

---

Schema

code int32
message string
details object[]
Array [
@type string
]

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

Schema

Example (from schema)

---

Schema

code int32
message string
details object[]
Array [
@type string
]

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

Schema

Example (from schema)

---

Schema

code int32
message string
details object[]
Array [
@type string
]

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

Loading...