DecartAI · AdirAmsalem · Jun 23, 2026 · Jun 23, 2026
diff --git a/decart/tokens/client.py b/decart/tokens/client.py
@@ -20,7 +20,7 @@ class TokensClient:
         ```python
         client = DecartClient(api_key=os.getenv("DECART_API_KEY"))
         token = await client.tokens.create()
-        # Returns: CreateTokenResponse(api_key="ek_...", expires_at="...")
+        # Returns: CreateTokenResponse(api_key="ek_...", token="eyJhbGciOiJFZERTQS...", expires_at="...")
 
         # With metadata:
         token = await client.tokens.create(metadata={"role": "viewer"})
@@ -71,7 +71,7 @@ async def create(
         Example:
             ```python
             token = await client.tokens.create()
-            # Returns: CreateTokenResponse(api_key="ek_...", expires_at="...")
+            # Returns: CreateTokenResponse(api_key="ek_...", token="eyJhbGciOiJFZERTQS...", expires_at="...")
 
             # With all options:
             token = await client.tokens.create(
@@ -120,6 +120,7 @@ async def create(
             data = await response.json()
             return CreateTokenResponse(
                 api_key=data["apiKey"],
+                token=data.get("token"),
                 expires_at=data["expiresAt"],
                 permissions=data.get("permissions"),
                 constraints=data.get("constraints"),

diff --git a/decart/tokens/types.py b/decart/tokens/types.py
@@ -20,6 +20,8 @@ class CreateTokenResponse(BaseModel):
     """Response from creating a client token."""
 
     api_key: str
+    token: str | None = None
+    """Signed JWT mirroring ``api_key``, verifiable offline via the public JWKS."""
     expires_at: str
     permissions: TokenPermissions | None = None
     constraints: TokenConstraints | None = None
diff --git a/examples/create_token.py b/examples/create_token.py
@@ -14,6 +14,7 @@ async def main() -> None:
 
         print("Token created successfully:")
         print(f"  API Key: {token.api_key[:10]}...")
+        print(f"  JWT: {f'{token.token[:16]}...' if token.token else '(not issued)'}")
         print(f"  Expires At: {token.expires_at}")
         origins = (token.permissions or {}).get("origins")
         print(f"  Allowed Origins: {', '.join(origins) if origins else '(any)'}")

diff --git a/tests/test_tokens.py b/tests/test_tokens.py
@@ -25,6 +25,7 @@ async def test_create_token() -> None:
         result = await client.tokens.create()
 
     assert result.api_key == "ek_test123"
+    assert result.token is None
     assert result.expires_at == "2024-12-15T12:10:00Z"
     assert result.permissions is None
     assert result.constraints is None
@@ -225,6 +226,7 @@ async def test_create_token_with_all_v2_fields() -> None:
     mock_response.json = AsyncMock(
         return_value={
             "apiKey": "ek_test123",
+            "token": "eyJhbGciOiJFZERTQS123",
             "expiresAt": "2024-12-15T12:10:00Z",
             "permissions": {
                 "models": ["lucy-2.1"],
@@ -249,6 +251,7 @@ async def test_create_token_with_all_v2_fields() -> None:
         )
 
     assert result.api_key == "ek_test123"
+    assert result.token == "eyJhbGciOiJFZERTQS123"
     assert result.expires_at == "2024-12-15T12:10:00Z"
     assert result.permissions == {
         "models": ["lucy-2.1"],