Coder API tokens are automatically generated somehow #5935
Assignees
Labels
s1
Bugs that break core workflows. Only humans may set this.
Comments
|
Just to add to this, IIRC Me as a coder admin could see other people's tokens showing up when I viewed them in my own account profile. If I created a token as local admin, logged out and logged into my OIDC account that has owner permissions, the new admin tokens showed up for my profile. |
|
This was indeed a permissions misunderstanding: owners can see all tokens but members cannot. I don't believe this is a bug so closing for now. @MichaelGerhart if this behavior isn't ideal for you, feel free to open another ticket and we'll happily triage as a feature request. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Coder tokens can be created through the CLI:
coder tokens createI tried this for the first time today and created one new token.
When I ran
coder tokens list, I was surprised to see not only the token I had created, but 3 additional tokens, all made within the last few days:I did not make the first three and would like to know how they were generated.
Note: I tried generating 1 new token after opening this issue and now I have 6 tokens in my list. So perhaps we're making multiple per request?
The text was updated successfully, but these errors were encountered: