Skip to content

API tokens

API tokens are the quickest way to call the API — mint one in the portal, use it as a Bearer token.

  1. In the portal, go to API Access.
  2. Under API tokens, click Create token.
  3. Name it (e.g. “FinOps reporting script”) and select its scopesread, write, run. Grant only what the integration needs.
  4. Copy the token — it’s shown once.

The effective permissions are the token’s scopes intersected with your role — a token can never do more than the member who created it.

Terminal window
curl -H "Authorization: Bearer co_xxxxxxxxxxxxxxxx" \
"https://app.cloudoptify.com/api/v1/cost/summary?from=2026-05-01&to=2026-05-31"

The API Access page lists your tokens with their scopes and last-used time. Revoke a token to invalidate it immediately; revocation cannot be undone. There’s a cap on active tokens per member, so retire tokens you no longer use.

  • One token per integration — easy to revoke without breaking others.
  • Prefer read-only tokens wherever possible.
  • Store tokens in your secret manager, never in code.