Access token permissions

development3 · December 3, 2020, 12:45pm

As we have an open-source project in Gatsby, which uses Prismic as CMS, the contributors cannot build the project without an access token.

Does it safe to share an access token publicly? Does it provide only read permission or write too? Our goal there is only giving the ability to read and not write.

Fares · December 3, 2020, 3:35pm

Hi there,

Welcome to the Prismic community.

In fact the token that you create in your setting has a read only permission to access your content.
currently Prismic doesn't have content Write API.

So if your repository is set to private then there is no issue in sharing the URL internally, but sharing these data publicly depends on your data.

Please let us know if that answers your question,
Fares

development3 · December 3, 2020, 4:02pm

Thanks.

So as our content is already public, there is no issue sharing the access token anyway.

Fares · December 3, 2020, 4:17pm

Exactly, please let us know if you have any other questions.

system · December 4, 2020, 4:17pm

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Permanent Access token Developing with Prismic rest-api	4	1735	December 9, 2021
Security API and freelancer Developing with Prismic rest-api	3	1207	December 9, 2021
Permanent access token included in app.js source code Developing with Prismic gatsby	6	1319	December 9, 2021
Unexpected "Prismic ref needs an access token" errors Developing with Prismic rest-api	6	1240	December 9, 2021
Client Side Security Developing with Prismic	7	2142	December 9, 2021

Access token permissions

Related topics