Skip to main content

Token

The token API holds secrets for various usecases.

Here are some common token types:

access: exposes full access to impersonate a specific member.

  • ics: exposes readonly access to appointments to render a calendar feed for a specific member.
  • password_reset: allows someone to reset a password

Integrations can store sensitive data in tokens:

  • expo: holds app-specific configuration for the Expo integration
  • awell: holds API secrets for the Awell integration.

Healthblocks authenticators uses tokens internally for oAuth: authorization_request& authorization_code