curl -L 'https://api.turso.tech/v1/organizations/{organizationSlug}/api-tokens' \
  -H 'Authorization: Bearer TOKEN'

{
  "tokens": [
    {
      "name": "ci-bot",
      "id": "clGFZ4STEe6fljpFzIum8A",
      "organization": "my-org",
      "group": "default",
      "scopes": [
        "db:create",
        "db:configure",
        "db:mint-token"
      ],
      "owner": {
        "username": "alice",
        "email": "alice@example.com"
      },
      "created_at": "2026-05-21"
    }
  ]
}

API Tokens

List Organization API Tokens

Returns the API tokens scoped to this organization (both organization-scoped and group-scoped). Unrestricted tokens are not returned here — manage those via GET /v1/auth/api-tokens.

Authorization is symmetric with the revoke endpoint:

Admins and owners see every token scoped to the organization, with the minting user attached in the owner field.
Members and viewers see only tokens they minted themselves.

This mirrors the personal-access-token model used in GitHub organization settings: admins get the full attribution list; everyone else sees their own access.

GET

organizations

{organizationSlug}

api-tokens

curl -L 'https://api.turso.tech/v1/organizations/{organizationSlug}/api-tokens' \
  -H 'Authorization: Bearer TOKEN'

{
  "tokens": [
    {
      "name": "ci-bot",
      "id": "clGFZ4STEe6fljpFzIum8A",
      "organization": "my-org",
      "group": "default",
      "scopes": [
        "db:create",
        "db:configure",
        "db:mint-token"
      ],
      "owner": {
        "username": "alice",
        "email": "alice@example.com"
      },
      "created_at": "2026-05-21"
    }
  ]
}

Use this endpoint to enumerate the tokens that act on a single organization (both org-scoped and group-scoped). Admins and owners see every token in the organization with the minting user attached; members and viewers see only their own. To list tokens across every organization the caller belongs to, use GET /v1/auth/api-tokens instead.

curl -L 'https://api.turso.tech/v1/organizations/{organizationSlug}/api-tokens' \
  -H 'Authorization: Bearer TOKEN'

Authorizations

Authorization

string

header

required

Bearer authentication header of the form Bearer <token>, where <token> is your auth token.

Path Parameters

organizationSlug

string

required

The slug of the organization or user account.

Response

200 - application/json

Successful response

tokens

object[]

Show child attributes

Revoke Revoke (Organization)

Documentation Index

Authorizations

Path Parameters

Response