Skip to content

Disable v1 token plaintext retrieval #20492

New issue
New issue
Closed
Feature
Closed
Disable v1 token plaintext retrieval#20492
Feature
Assignees
jeremystretch
Labels
breaking changeThis change modifies or removes some previously documented functionalitycomplexity: lowRequires minimal effort to implementstatus: backlogAwaiting selection for worktype: featureIntroduction of new functionality to the application
Milestone
v4.5.0
@jeremystretch

Description

@jeremystretch
jeremystretch
opened on Oct 3, 2025

NetBox version

v4.4.2

Feature type

Change to existing functionality

Proposed functionality

Remove the ability to retrieve the plaintext key from legacy (v1) API tokens. This entails removing the ALLOW_TOKEN_RETRIEVAL configuration parameter, which is disabled by default.

Use case

An improved API token implementation is being developed for NetBox v4.5 (see #20210), which will no longer rely on storing token plaintexts in the database. Support for legacy (v1) tokens will be removed in a future NetBox release. This change is a natural step toward that eventuality, and delivers improved operational security in the interim.

Database changes

This change does not entail any modifications to the database or token data. It is only an application level change.

External dependencies

N/A

Metadata

Metadata

Assignees

Labels

breaking changeThis change modifies or removes some previously documented functionalitycomplexity: lowRequires minimal effort to implementstatus: backlogAwaiting selection for worktype: featureIntroduction of new functionality to the application

Type

Feature

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions