A new security feature has been deployed: bot API tokens: a safer and more flexible alternative to existing Bot Access Codes.
Until now, bot integrations used a single Bot Access Code. This code was often shared across multiple scripts, websites, or in-world devices.
About API tokens
You can now create multiple tokens for programmatic bot access. Each token can be managed independently.
New API tokens allow to:
- create multiple access credentials for different scripts or services,
- set expiration dates,
- revoke tokens anytime,
- track when a token was last used.
API Tokens creation and usage
Bot AccessTokens are available in the Bot Control Panel → Access Code & API Tokens page. API Token can be used anywhere as a drop-in replacement of old Bot Access Code. You can also mix the usage of new tokens and the old Access Code.
You can continue using the traditional Bot Access Code, but we recommend switching to tokens for a better security and control.