Endpoints¶
In the following we describe the different endpoints and available operations.
Overview¶
| Endpoint | Description |
|---|---|
| Configuration | Server configuration endpoint (.well-known/mytoken-configuration) |
| Capabilities | List of all available capability templates |
| Mytoken | Create new mytokens using various grant types |
| Token Info | Query information about mytokens |
| Revocation | Revoke mytokens |
| Transfer | Create transfer codes for existing mytokens |
| User Settings | Manage user settings, grants, and tags |
| Profiles | Manage server-side profile and template storage |
| Notifications | Manage notifications and calendars |
Important
If a mytoken is used that has token rotation enabled, the response to any request can contain an updated Mytoken.
To be more precise: If the mytoken was rotated (depending on the policy), the response MUST contain the updated mytoken.
The updated mytoken is returned in the token_update claim. This claim contains a whole mytoken response object as
described in the mytoken endpoint.
Important
For all requests a mytoken can also be passed in the Authorization header or mytoken cookie, instead of the
mytoken request body parameter. However, it cannot be passed as a query parameter.
Last update:
April 14, 2026 07:17:04