The user profile enables users to generate identity tokens. Any user can create a user identity token for themselves via the UI. Identity tokens are scoped tokens, which means that they provide limited and focused permissions, making them more secure and, therefore, preferable to API keys. In addition, when a user is deleted/disabled, their tokens are also revoked. For more information, see Access Tokens.
Note
From Artifactory release 7.38.4, the Identity Token has been shortened to a short string, and also enables you to add an optional description to the token for easier management.
Note
When creating a reference token, the maximum payload is 4,000 characters. The number or length of the groups associated with the token can affect this payload.
For SAML users, Starting from Artifactory version 7.117.1, the groups association is saved in the JFrog Platform, and does not add to the payload.
Open your Artifactory profile by clicking the profile icon
in the upper-right corner of Artifactory and click Edit Profile from the dropdown menu. The profile settings screen opens.In the profile settings screen, click Generate an Identity Token.
This opens the Generate an Identity Token window.
In the Add Description field, you can add an optional description for the new token, which will make it easier for you to identify the token.
Click Next.
You will now see the new reference token displayed.
Click Copy (or the copy icon next to the token) to copy the identity reference token.
Click Close to close the window.
The new token you generated appears with the description in the list of identity tokens:
Revoking the Identity Token
Currently identity tokens can only be revoked through the Revoke Token API.