API tokens
API tokens are the quickest way to call the API — mint one in the portal, use it as a Bearer token.
Minting a token
Section titled “Minting a token”- In the portal, go to API Access.
- Under API tokens, click Create token.
- Name it (e.g. “FinOps reporting script”) and select its scopes —
read,write,run. Grant only what the integration needs. - Copy the token — it’s shown once.
The effective permissions are the token’s scopes intersected with your role — a token can never do more than the member who created it.
Using it
Section titled “Using it”curl -H "Authorization: Bearer co_xxxxxxxxxxxxxxxx" \ "https://app.cloudoptify.com/api/v1/cost/summary?from=2026-05-01&to=2026-05-31"Managing tokens
Section titled “Managing tokens”The API Access page lists your tokens with their scopes and last-used time. Revoke a token to invalidate it immediately; revocation cannot be undone. There’s a cap on active tokens per member, so retire tokens you no longer use.
Good practice
Section titled “Good practice”- One token per integration — easy to revoke without breaking others.
- Prefer
read-only tokens wherever possible. - Store tokens in your secret manager, never in code.