Create a PAT

curl --request POST \
  --url https://api.managem.co.uk/user/personal-access-tokens \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "name": "<string>",
  "expires": "2023-11-07T05:31:56Z"
}
'

{
  "name": "<string>",
  "value": "<string>",
  "createdAt": "2023-11-07T05:31:56Z",
  "expires": "2023-11-07T05:31:56Z"
}

Personal Access Tokens

Create a PAT

Create a new personal access token for the authenticated user.

Use personal access tokens for server-to-server or CLI integrations where interactive user login is not practical.

Important behavior:

A user can have up to 5 personal access tokens.
Token names must be unique per user.
expires is optional, but if provided it must be at least 24 hours in the future.
Treat the token value as a secret and store it securely.

How to use the token with API requests:

Authorization: ApiKey <personal-access-token>

Example request flow:

Create token via this endpoint.
Save the token value in your secret store.
Send it as an API key on subsequent API calls.
Rotate and revoke tokens regularly as part of your security process.

POST

user

personal-access-tokens

Create a PAT

curl --request POST \
  --url https://api.managem.co.uk/user/personal-access-tokens \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "name": "<string>",
  "expires": "2023-11-07T05:31:56Z"
}
'

{
  "name": "<string>",
  "value": "<string>",
  "createdAt": "2023-11-07T05:31:56Z",
  "expires": "2023-11-07T05:31:56Z"
}

Authorizations

Authorization

string

header

required

Bearer authentication header of the form Bearer <token>, where <token> is your auth token.

Body

application/json

Payload used to create a new personal access token.

name

string

required

The personal access token name. Must be unique for the authenticated user.

Required string length: 1 - 256

expires

string<date-time>

Optional ISO timestamp indicating when the token should expire. Omit to create a non-expiring token.

Response

Personal access token created

Personal access token information returned to the client.

name

string

required

The personal access token name

value

string

required

The personal access token value. This is only available immediately after creation.

createdAt

string<date-time>

required

ISO timestamp indicating when the token was created

expires

string<date-time>

ISO timestamp indicating when the token expires

List PATs Delete PAT

Basket

Conversations

Account

Addresses

Purchases

Reviews

Cases

Invoices

Portal

Personal Access Tokens

Stats

Create a PAT

Authorizations

Body

Response