Skip to main content
The API page lets you create and manage tokens used to authenticate requests to the Penbox Connect API. Access it from Settings → API.
This page is only accessible to Administrators.

Creating a token

Click Create token and fill in:
  • Name — A label to identify what this token is used for (e.g. CRM integration, n8n automation).
  • Description — Optional. Additional context about the token’s purpose.
  • Workspaces — Select which workspaces this token is allowed to access. A single token can cover multiple workspaces.
After saving, the token value is displayed once. Copy it immediately and store it securely — it will never be shown again.
Once you close the creation dialog, the token value cannot be retrieved. If you lose it, you will need to revoke the token and create a new one.

Managing tokens

The token list shows each token’s name, when it was last used, when it was created, and who created it. Click any row to edit the token’s name, description, or workspace access. To permanently disable a token, open it and click Revoke token. Revoked tokens can no longer authenticate API requests.

Using a token

Pass the token in the Authorization header of your API requests: 
Authorization: Bearer <your_token>
For full details on available endpoints and authentication, see the API Reference.