Develop
API Reference

Authentication

Authenticating with the Poliglot API using Personal Access Tokens.

All API requests require authentication via a Personal Access Token (PAT).

Creating a Token

  1. Click your profile icon in the top right
  2. Go to Account Settings
  3. Navigate to API Keys
  4. Click Create New Key, give it a name, and optionally set an expiration
  5. Copy the token immediately. It won't be shown again.

Using a Token

Include the token as a Bearer token in the Authorization header:

curl -X GET "https://poliglot.io/api/v1/workspaces" \
  -H "Authorization: Bearer plgt_your_token_here"

Every request without a valid token returns 401 Unauthorized.

Managing Tokens

List Active Tokens

curl -X GET "https://poliglot.io/api/v1/users/me/keys" \
  -H "Authorization: Bearer plgt_your_token_here"

Revoke a Token

curl -X DELETE "https://poliglot.io/api/v1/users/me/keys/{keyId}" \
  -H "Authorization: Bearer plgt_your_token_here"

Revocation is immediate. Any in-flight requests using the revoked token will fail.

Token Format

Tokens are prefixed with plgt_ followed by a random string. They are tied to your user account and inherit your workspace permissions.

Security

  • Treat tokens like passwords. Do not commit them to version control.
  • Use environment variables or secret management to store tokens in CI/CD.
  • Create separate tokens for different integrations so you can revoke them independently.
  • Set expiration dates for tokens used in automation.

API Reference

REST API for the Poliglot platform.

Secret

Secret management API

On this page

Creating a TokenUsing a TokenManaging TokensList Active TokensRevoke a TokenToken FormatSecurity