Overview
OXVO supports token-based API access for automations and integrations. Tokens should be treated like passwords and restricted to the minimum required scope. Scoped tokens help reduce blast radius by limiting what an integration can access or modify.
Controls & Practices
- Create tokens with limited scope (implementation dependent) - Rotate tokens on a schedule or after incidents - Revoke tokens instantly if exposure is suspected - Recommended: store tokens in a secrets manager
More trust controls
Browse related security, privacy, and reliability controls across OXVO.
