JFrog’s Access Tokens are standard JSON Web Tokens (JWTs) that provide flexibility and security by setting various token properties, which in turn control the token’s permissions, lifecycle, accessibility and more. One type of Access Token is called an Identity Token, which is an Access Token that is scoped, or targeted, to a specific user’s permissions, that is to their identity. Because identity tokens are scoped tokens, they provide limited and focused permissions, making them more secure. When a user is deleted or disabled, their tokens are revoked.