hello, I'm working with the Good Data API and using the API token. I assume the token is seen as a super user that allow us to do anything. IS there any recommendation, that we can use for the API to replace the API token by something else that we can restrict it? Example, it can only create a user and data filters for a workspace?

Hi Stefan, as mentioned in our documentation here: https://www.gooddata.com/docs/cloud/manage-organization/user-token/ _By default, only administrators (users with the

organization.MANAGE

permission) can create new API access tokens. If you’re not an administrator but wish to use API tokens for authentication, request your administrator to grant you the

organization.SELF_CREATE_TOKEN

permission. For details, see Set Permissions for Organization._ The GoodData API supports the options to manage user permissions, such as granting or revoking access to specific workspaces, dashboards, etc. You can leverage these permissions to create scoped API tokens that have limited access.

hey @Michael Ullock thank you for the quick reply. Can I restrict the token to create user and create user data filters within workspaces?

Hi Stefan, my apologies for not getting back to you sooner here - but it’s not possible to restrict the token to create user and create user data filters within workspaces. The API token management is focused on granting full administrative access or restricting access to the entire organization, rather than allowing fine-grained control over specific actions.

thank you @Michael Ullock