From ca7b4953f3322b6b1ee28c01e53cf914f3e39ad7 Mon Sep 17 00:00:00 2001 From: Lewis Larsen Date: Sat, 10 Aug 2024 12:45:11 +0100 Subject: [PATCH] mentioned token scopes --- api/authentication.md | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/api/authentication.md b/api/authentication.md index 81b8ce0..5c050d0 100644 --- a/api/authentication.md +++ b/api/authentication.md @@ -80,6 +80,14 @@ If the authentication is successful, you'll receive a JSON response with a token } ``` +### Token Scope and Security Considerations +**Important:** The token generated by this endpoint has full access to all scopes. This means it is a very powerful token with unrestricted access to the API. Please be aware of the following: + +This token can perform any action that the user account is capable of. +It should be treated with the utmost care and security. +It's recommended to use this powerful token only for trusted applications or devices. +For applications that don't need full access, consider creating more restricted tokens through the web interface. + Use this token in the `Authorization` header for subsequent API requests, as described in the "Using Your API Token" section above. ### Error Responses