From bc8c3cc93a644101d1e9d195386ef9bc4ec663ad Mon Sep 17 00:00:00 2001 From: Michelle Habonneau <83347449+Michellehbn@users.noreply.github.com> Date: Thu, 10 Aug 2023 15:23:52 +0200 Subject: [PATCH 1/4] Update security-tokens.md Added line about Org API Tokens being deprecated --- docs/hub/security-tokens.md | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/docs/hub/security-tokens.md b/docs/hub/security-tokens.md index af4822286..94351ee59 100644 --- a/docs/hub/security-tokens.md +++ b/docs/hub/security-tokens.md @@ -15,6 +15,8 @@ Access tokens allow applications and notebooks to perform specific actions speci - `write`: tokens with this role additionally grant write access to the repositories you have write access to. Use this token if you need to create or push content to a repository (e.g., when training a model or modifying a model card). +Note that Organization API Tokens have been deprecated. If you are a member of an organization with read/write/admin role, then your User Access Tokens will be able to read/write the resources according to the token permission (read/write) and organization membership (read/write/admin). + ## How to manage User Access Tokens? To create an access token, go to your settings, then click on the [Access Tokens tab](https://huggingface.co/settings/tokens). Click on the **New token** button to create a new User Access Token. @@ -63,4 +65,4 @@ We recommend you create one access token per app or usage. For instance, you cou This way, you can invalidate one token without impacting your other usages. -We also recommend only giving the appropriate role to each token you create. If you only need read access (i.e., loading a dataset with the `datasets` library or retrieving the weights of a model), only give your access token the `read` role. \ No newline at end of file +We also recommend only giving the appropriate role to each token you create. If you only need read access (i.e., loading a dataset with the `datasets` library or retrieving the weights of a model), only give your access token the `read` role. From 57fb3887684de67731edc519f2fcf8732d814dac Mon Sep 17 00:00:00 2001 From: Michelle Habonneau <83347449+Michellehbn@users.noreply.github.com> Date: Thu, 10 Aug 2023 15:41:43 +0200 Subject: [PATCH 2/4] Update security-tokens.md --- docs/hub/security-tokens.md | 13 ++++++++++--- 1 file changed, 10 insertions(+), 3 deletions(-) diff --git a/docs/hub/security-tokens.md b/docs/hub/security-tokens.md index 94351ee59..195fc28e0 100644 --- a/docs/hub/security-tokens.md +++ b/docs/hub/security-tokens.md @@ -5,8 +5,8 @@ User Access Tokens are the preferred way to authenticate an application or notebook to Hugging Face services. You can manage your access tokens in your [settings](https://huggingface.co/settings/tokens).
- - + +
Access tokens allow applications and notebooks to perform specific actions specified by the scope of the roles shown in the following: @@ -15,7 +15,14 @@ Access tokens allow applications and notebooks to perform specific actions speci - `write`: tokens with this role additionally grant write access to the repositories you have write access to. Use this token if you need to create or push content to a repository (e.g., when training a model or modifying a model card). -Note that Organization API Tokens have been deprecated. If you are a member of an organization with read/write/admin role, then your User Access Tokens will be able to read/write the resources according to the token permission (read/write) and organization membership (read/write/admin). +Note that Organization API Tokens have been deprecated: + +
+ + +
+ +If you are a member of an organization with read/write/admin role, then your User Access Tokens will be able to read/write the resources according to the token permission (read/write) and organization membership (read/write/admin). ## How to manage User Access Tokens? From cf09ce6d910062fe6840bb2c93b016602f4ad390 Mon Sep 17 00:00:00 2001 From: Omar Sanseviero Date: Fri, 11 Aug 2023 11:47:33 +0200 Subject: [PATCH 3/4] Update docs/hub/security-tokens.md Co-authored-by: Mishig --- docs/hub/security-tokens.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/hub/security-tokens.md b/docs/hub/security-tokens.md index 195fc28e0..0d7df9725 100644 --- a/docs/hub/security-tokens.md +++ b/docs/hub/security-tokens.md @@ -72,4 +72,4 @@ We recommend you create one access token per app or usage. For instance, you cou This way, you can invalidate one token without impacting your other usages. -We also recommend only giving the appropriate role to each token you create. If you only need read access (i.e., loading a dataset with the `datasets` library or retrieving the weights of a model), only give your access token the `read` role. +We also recommend only giving the appropriate role to each token you create. If you only need read access (e.g., loading a dataset with the `datasets` library or retrieving the weights of a model), only give your access token the `read` role. From b967d76667c62d51b8b2e93f360c6ed9fe225193 Mon Sep 17 00:00:00 2001 From: Omar Sanseviero Date: Fri, 11 Aug 2023 11:52:47 +0200 Subject: [PATCH 4/4] Update docs/hub/security-tokens.md --- docs/hub/security-tokens.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/hub/security-tokens.md b/docs/hub/security-tokens.md index 0d7df9725..40545aff6 100644 --- a/docs/hub/security-tokens.md +++ b/docs/hub/security-tokens.md @@ -19,7 +19,7 @@ Note that Organization API Tokens have been deprecated:
- +
If you are a member of an organization with read/write/admin role, then your User Access Tokens will be able to read/write the resources according to the token permission (read/write) and organization membership (read/write/admin).