# Access tokens

Access tokens are a more secure way to perform automated integrations with Debricked, compared to using your username and password.

Typical use cases for access tokens include GitLab, Bitbucket, and API integrations which are not tied to a particular user, but rather to a repository or project.

# Creating access tokens

Login to the service, and click "Admin tools" -> "Account settings", and then find the "Access tokens" table in the middle of the page.

  1. Click the Add-symbol to open a new modal, and fill in the human-readable Description, for example with "GitLab" if your token is going to be used there. You then need to select an Access Scope. Most likely, the default "API" scope is what you're looking for, since this gives access to the most common actions such as performing scans.
  2. Click Generate, and the token will be shown on the screen. Note that you can only view this token now, and never again! Make sure to copy it to the place where you will use it, for example into a secret in your CI/CD pipeline.
  3. When you're done, click the Close button.

# Using access tokens

To see examples of how to use the token, we refer to the relevant integration under Integrations.