diff --git a/docs/user/admin/app-tokens.md b/docs/user/admin/app-tokens.md index 803da374..01e706f1 100644 --- a/docs/user/admin/app-tokens.md +++ b/docs/user/admin/app-tokens.md @@ -2,7 +2,7 @@ sidebar_position: 2 id: app-tokens title: App Tokens -description: App Tokens in OpenCLoud +description: App Tokens in OpenCloud draft: false --- @@ -12,17 +12,15 @@ App Tokens allow you to connect external apps and services (such as WebDAV clien This improves security in several ways: -- You never need to expose your login password to third party applications -- App tokens can be revoked. If you're ever afraid that your app token has been compromised, just delete it. -- App tokens have a configurable expiry. This prevents unintended attack vectors. +- You never need to expose your login password to third-party applications. +- App tokens can be revoked. If you think one has been compromised, just delete it. +- App tokens have a configurable expiry date. This reduces the risk of misuse. -In addition to improved security, App Tokens also maximize compatibility with third party applications. Many -applications don't support modern login flows like OpenID Connect, but only accept standard logins with a username and -password instead. Your username in combination with any of your App Tokens serves as just that. +In addition to improved security, App Tokens also maximize compatibility with third-party applications. Many applications do not support modern login flows like OpenID Connect, but only accept standard logins with a username and password instead. Your username together with any of your App Tokens works as the login credentials. :::important -App Tokens allow third party applications to access all your data. Make sure that you create -individual App Tokens per application and use a reasonable expiration period. If you don't want to +App Tokens allow third-party applications to access all your data. Make sure that you create +one App Token per application and use a reasonable expiration period. If you do not want to expose access to all your data, consider using a public link instead. ::: @@ -31,22 +29,22 @@ expose access to all your data, consider using a public link instead. - Go to the App Tokens section in your OpenCloud account settings. - Click on “+ New” to create a new token. - Create App Token + Create App Token - Enter a name for the token (e.g., "WebDAV Client"). - Select an expiration date for added security. - Click Confirm. - Enter the name an exparation date + Enter the name and expiration date ## Copy the App Token - Once the token is created, it will be shown only once. - Copy it immediately and store it in a secure place. - Copy Token + Copy Token :::note -If you lose the token, you’ll need to delete it and create a new one. +If you lose the token, you need to delete it and create a new one. ::: ## Use the App Token @@ -59,7 +57,7 @@ You can now use the token in place of your password when connecting: :::info The username is usually the same as the one you use for your regular login. -However, if the Identity Provider is operating in autoprovisioning mode, only the UUID can be used. +However, if the identity provider is operating in autoprovisioning mode, only the UUID can be used. You can find this UUID in the Preferences overview page. ::: diff --git a/docs/user/admin/img/app-tokens/copy-token.png b/docs/user/admin/img/app-tokens/copy-token.png index f240284c..f485045f 100644 Binary files a/docs/user/admin/img/app-tokens/copy-token.png and b/docs/user/admin/img/app-tokens/copy-token.png differ diff --git a/docs/user/admin/img/app-tokens/create.png b/docs/user/admin/img/app-tokens/create.png index cd90262e..0100ac80 100644 Binary files a/docs/user/admin/img/app-tokens/create.png and b/docs/user/admin/img/app-tokens/create.png differ diff --git a/docs/user/admin/img/app-tokens/enter-name.png b/docs/user/admin/img/app-tokens/enter-name.png index a349bc26..0b70c8df 100644 Binary files a/docs/user/admin/img/app-tokens/enter-name.png and b/docs/user/admin/img/app-tokens/enter-name.png differ