Skip to main content

Pentrova is launching soon. Join the waitlist for early access.Join the waitlist

The Pentrova API uses bearer tokens. Each token is scoped to a workspace and a set of roles; tokens inherit the capabilities of the role they are issued under.

Creating a token#

From the API tab in your workspace settings, create a token with the minimum role required for your use case. Tokens are shown once at creation time and cannot be retrieved again, so store them in your secret manager immediately.

export PENTROVA_TOKEN="pntr_..."

Using the token#

Every request must include the token in the Authorization header with the Bearer prefix.

curl -H "Authorization: Bearer $PENTROVA_TOKEN" \
  https://api.pentrova.ai/v1/workspaces/current

Rotation#

Tokens can be rotated at any time. Rotation is atomic: the new token is issued and the old token continues to work until you explicitly revoke it, which lets you roll tokens through CI without a window of downtime.

Revocation#

Revoked tokens are rejected immediately. Every token’s last-used timestamp is visible in the API tab so unused tokens can be identified and revoked proactively.

Last updated: November 8, 2024

Was this page helpful?

Site search

↑↓ navigateEnter openEsc close