Skip to main content
API tokens let you authenticate requests to the AgentPost MCP API. Each token acts as a credential for a specific integration or agent — create one per use case so you can revoke access independently.

Create a token

1

Open API Tokens settings

Navigate to Settings → API Tokens.
2

Name your token

Enter a descriptive name for the token (for example, my-agent or local-dev).
3

Generate the token

Click Create Token. The plaintext token value is displayed once immediately after creation.
4

Copy the token

Copy the token and store it somewhere secure (for example, in your environment variables or a secrets manager).
The token value is shown only once. It cannot be retrieved after you close or navigate away from this page. If you lose it, you must revoke the token and create a new one.

Use a token

Send your token as a Bearer token in the Authorization header of every MCP API request: 
Authorization: Bearer <your-token>
Tokens are rate-limited to 60 requests per minute per token. Requests that exceed this limit receive a 429 Too Many Requests response.

Revoke a token

In Settings → API Tokens, find the token you want to remove and click Revoke. The token is invalidated immediately — any in-flight requests using it will fail.

Token list

The token list shows the following information for each token:
ColumnDescription
NameThe label you gave the token when you created it
CreatedThe date the token was generated
Last usedThe date the token was last used to authenticate a request