--- title: list-auth-tokens product: vercel url: /docs/rest-api/authentication/list-auth-tokens type: reference prerequisites: [] related: - /docs/rest-api summary: Learn about list-auth-tokens on Vercel. install_vercel_plugin: npx plugins add vercel/vercel-plugin --- # List Auth Tokens ```http GET /v6/user/tokens ``` Retrieve a list of the current User's authentication tokens. ## Authentication **bearerToken**: HTTP bearer ## Responses ### 200: No description Content-Type: `application/json` ```json { "oneOf": [ { "type": "object", "required": [ "pagination", "tokens" ], "properties": { "tokens": { "type": "array", "items": { "type": "object", "description": "Authentication token metadata.", "required": [ "activeAt", "createdAt", "id", "name", "type" ], "properties": { "id": { "type": "string", "description": "The unique identifier of the token." }, "name": { "type": "string", "description": "The human-readable name of the token." }, "type": { "type": "string", "description": "The type of the token." }, "prefix": { "type": "string", "description": "The token's prefix, for identification purposes." }, "suffix": { "type": "string", "description": "The last few characters of the token, for identification purposes." }, "origin": { "type": "string", "description": "The origin of how the token was created." }, "scopes": { "type": "array", "description": "The access scopes granted to the token.", "items": { "oneOf": [ { "type": "object", "description": "The access scopes granted to the token.", "required": [ "createdAt", "type" ], "properties": { "type": { "type": "string", "enum": [ "user" ] }, "sudo": { "type": "object", "required": [ "expiresAt", "origin" ], "properties": { "origin": { "type": "string", "description": "Possible multi-factor origins", "enum": [ "totp", "webauthn", "recovery-code" ] }, "expiresAt": { "type": "number" } } }, "origin": { "type": "string", "enum": [ "app", "saml", "github", "github-webhook", "gitlab", "bitbucket", "email", "manual", "passkey", "otp", "sms", "invite", "google", "apple", "chatgpt", "emu" ] }, "createdAt": { "type": "number" }, "expiresAt": { "type": "number" } } }, { "type": "object", "description": "The access scopes granted to the token.", "required": [ "createdAt", "teamId", "type" ], "properties": { "type": { "type": "string", "enum": [ "team" ] }, "teamId": { "type": "string" }, "origin": { "type": "string", "enum": [ "app", "saml", "github", "github-webhook", "gitlab", "bitbucket", "email", "manual", "passkey", "otp", "sms", "invite", "google", "apple", "chatgpt", "emu" ] }, "createdAt": { "type": "number" }, "expiresAt": { "type": "number" } } } ] } }, "createdAt": { "type": "number", "description": "Timestamp (in milliseconds) of when the token was created." }, "activeAt": { "type": "number", "description": "Timestamp (in milliseconds) of when the token was most recently used." }, "expiresAt": { "type": "number", "description": "Timestamp (in milliseconds) of when the token expires." }, "revokedAt": { "type": "number", "description": "Timestamp (in milliseconds) of when the token was revoked." }, "leakedAt": { "type": "number", "description": "Timestamp (in milliseconds) of when the token was marked as leaked." }, "leakedUrl": { "type": "string", "description": "URL where the token was discovered as leaked." } } } }, "pagination": { "type": "object", "required": [ "count", "next", "prev" ], "properties": { "count": { "type": "number" }, "next": { "type": "string", "nullable": true }, "prev": { "type": "string", "nullable": true } } } } }, { "type": "object", "required": [ "pagination", "tokens" ], "properties": { "tokens": { "type": "array", "items": { "type": "object", "description": "Authentication token metadata.", "required": [ "activeAt", "createdAt", "id", "name", "type" ], "properties": { "id": { "type": "string", "description": "The unique identifier of the token." }, "name": { "type": "string", "description": "The human-readable name of the token." }, "type": { "type": "string", "description": "The type of the token." }, "prefix": { "type": "string", "description": "The token's prefix, for identification purposes." }, "suffix": { "type": "string", "description": "The last few characters of the token, for identification purposes." }, "origin": { "type": "string", "description": "The origin of how the token was created." }, "scopes": { "type": "array", "description": "The access scopes granted to the token.", "items": { "oneOf": [ { "type": "object", "description": "The access scopes granted to the token.", "required": [ "createdAt", "type" ], "properties": { "type": { "type": "string", "enum": [ "user" ] }, "sudo": { "type": "object", "required": [ "expiresAt", "origin" ], "properties": { "origin": { "type": "string", "description": "Possible multi-factor origins", "enum": [ "totp", "webauthn", "recovery-code" ] }, "expiresAt": { "type": "number" } } }, "origin": { "type": "string", "enum": [ "app", "saml", "github", "github-webhook", "gitlab", "bitbucket", "email", "manual", "passkey", "otp", "sms", "invite", "google", "apple", "chatgpt", "emu" ] }, "createdAt": { "type": "number" }, "expiresAt": { "type": "number" } } }, { "type": "object", "description": "The access scopes granted to the token.", "required": [ "createdAt", "teamId", "type" ], "properties": { "type": { "type": "string", "enum": [ "team" ] }, "teamId": { "type": "string" }, "origin": { "type": "string", "enum": [ "app", "saml", "github", "github-webhook", "gitlab", "bitbucket", "email", "manual", "passkey", "otp", "sms", "invite", "google", "apple", "chatgpt", "emu" ] }, "createdAt": { "type": "number" }, "expiresAt": { "type": "number" } } } ] } }, "createdAt": { "type": "number", "description": "Timestamp (in milliseconds) of when the token was created." }, "activeAt": { "type": "number", "description": "Timestamp (in milliseconds) of when the token was most recently used." }, "expiresAt": { "type": "number", "description": "Timestamp (in milliseconds) of when the token expires." }, "revokedAt": { "type": "number", "description": "Timestamp (in milliseconds) of when the token was revoked." }, "leakedAt": { "type": "number", "description": "Timestamp (in milliseconds) of when the token was marked as leaked." }, "leakedUrl": { "type": "string", "description": "URL where the token was discovered as leaked." } } } }, "pagination": { "type": "object", "description": "This object contains information related to the pagination of the current request, including the necessary parameters to get the next or previous page of data.", "required": [ "count", "next", "prev" ], "properties": { "count": { "type": "number", "description": "Amount of items in the current page." }, "next": { "type": "number", "description": "Timestamp that must be used to request the next page.", "nullable": true }, "prev": { "type": "number", "description": "Timestamp that must be used to request the previous page.", "nullable": true } } } } } ] } ``` ### 400: No description ### 401: The request is not authorized. ### 403: You do not have permission to access this resource. --- ## Related - [authentication endpoints](/docs/rest-api#authentication) - [REST API overview](/docs/rest-api) - [OpenAPI spec](https://openapi.vercel.sh/) (machine-readable, all endpoints) --- [View full sitemap](/docs/sitemap)