Access Tokens
While you can log into Nexigon's web UI with an email address and password, Nexigon Cli and Nexigon Agent require you to use access tokens. This prevents the need to store any passwords in favor of revokable, scoped tokens.
Important
Any token containing the character sequence _sk_ shall be treated as a password and must be kept secret. Such tokens should never end up on any device, whether deployed in production or for testing purposes.
User Tokens​
User tokens start with u_sk_ and can be used to carry out operations on behalf of a certain user.
User tokens can be generated through the web UI. The resulting tokens have the following form:
u_sk_mpXj1qfGjGRFarjgBAccmMmH2R4Vo88J5JUswrb3iE3H3jyf88msc3xsgztXez9LUd
Currently, user tokens are not scoped and grant full access to everything the user has access to.