POST
/
v1
/
organizations
/
{organizationName}
/
groups
/
{groupName}
/
auth
/
tokens
curl -L -X POST 'https://api.turso.tech/v1/organizations/{organizationName}/groups/{groupName}/auth/tokens?expiration=2w&authorization=full-access' \
-H 'Authorization: Bearer TOKEN'
{
  "jwt": "TOKEN"
}

Tokens cannot be retrieved once created, and cannot be revoked individually.

curl -L -X POST 'https://api.turso.tech/v1/organizations/{organizationName}/groups/{groupName}/auth/tokens?expiration=2w&authorization=full-access' \
-H 'Authorization: Bearer TOKEN'
{
  "jwt": "TOKEN"
}

Path Parameters

organizationName
string
required

The name of the organization or user.

groupName
string
required

The name of the group.

Query Parameters

expiration
string
default: never

Expiration time for the token (e.g., 2w1d30m).

authorization
enum<string>
default: full-access

Authorization level for the token (full-access or read-only).

Available options:
full-access,
read-only

Body

application/json
permissions
object

The permissions for the token.

Response

200 - application/json
jwt
string

The generated authorization token (JWT).