From 40d29bff8f78d8625807b69b0744dbcb3ba2d3e5 Mon Sep 17 00:00:00 2001
From: Laurens Kling <laurens@goedideemedia.nl>
Date: Tue, 7 Oct 2025 12:07:34 +0200
Subject: [PATCH] Update api-tokens.md (#2743)

secrets.encryptionKey is not under apiToken but directly under admin
---
 docusaurus/docs/cms/features/api-tokens.md | 14 +++++---------
 1 file changed, 5 insertions(+), 9 deletions(-)

diff --git a/docusaurus/docs/cms/features/api-tokens.md b/docusaurus/docs/cms/features/api-tokens.md
index c6355fdb3f..7f63b377c9 100644
--- a/docusaurus/docs/cms/features/api-tokens.md
+++ b/docusaurus/docs/cms/features/api-tokens.md
@@ -113,7 +113,7 @@ Changing the salt invalidates all the existing API tokens.
 
 #### Ensuring API tokens are visible in the admin panel
 
-To allow persistent visibility of API tokens in the admin panel, an encryption key must be provided in [your `/config/admin` file](/cms/configurations/admin-panel) under `apiToken.secrets.encryptionKey`:
+To allow persistent visibility of API tokens in the admin panel, an encryption key must be provided in [your `/config/admin` file](/cms/configurations/admin-panel) under `secrets.encryptionKey`:
 
 <Tabs groupId="js-ts">
 <TabItem label="JavaScript" value="js">
@@ -121,10 +121,8 @@ To allow persistent visibility of API tokens in the admin panel, an encryption k
 ```js title="/config/admin.js"
 module.exports = ({ env }) => ({
   // other config parameters
-  apiToken: {
-    secrets: {
-      encryptionKey: env('ENCRYPTION_KEY'),
-    },
+  secrets: {
+    encryptionKey: env('ENCRYPTION_KEY'),
   }
 });
 ```
@@ -136,10 +134,8 @@ module.exports = ({ env }) => ({
 ```js title="/config/admin.ts"
 export default ({ env }) => ({
   // other config parameters
-  apiToken: {
-    secrets: {
-      encryptionKey: env('ENCRYPTION_KEY'),
-    },
+  secrets: {
+    encryptionKey: env('ENCRYPTION_KEY'),
   }
 });
 ```