Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Are notifications sent when API tokens are about to expire?

Nikki Hailey
Nikki Hailey
Contributor
February 20, 2025

Since API tokens will all have a expiration date of a year from now on, will admins be notified ahead of time that we need to renew?

Answer
Watch
Like Be the first to like this
50 views

2 answers

1 vote
Dirk Ronsmans
Dirk Ronsmans
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
February 20, 2025

@Nikki Hailey ,

Yes, you should get an email a day before the token actually expires with the name and the name of the token.  

it might be a bit short notice so I recommend adding a reminder yourself too. 
keep in mind as these are personal tokens, only the person it belongs too will get notified. 

Reply
0 votes
Nikki Hailey
Nikki Hailey
Contributor
February 20, 2025

Hmmm... This token was for an integration, and I was hoping it would go to the admin team in case I happen to not be with the company any more. Seems like you should be able to at least choose to send notifications to multiple people to CYA.

View More Comments
Trudy Claspill
Trudy Claspill
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
February 20, 2025

If you leave the company I'm assuming your company would disable your account in which case the token will become unusable at that moment.

Tokens that support an integration used by teams or larger organization should generally be based on service accounts rather than an individual user's account, so that the integration doesn't stop working if the individual's account is disabled.

It would also be a good idea to have a recurring task in your team's backlog to periodically check tokens that are known to be used for integration and proactively generate new tokens.

Like David Bakkers likes this
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
PREMIUM
PERMISSIONS LEVEL
Product Admin
TAGS
AUG Leaders

Atlassian Community Events

    See all events