It is advisable to periodically rotate API tokens to minimise the risk of unauthorised access to your account data. API token rotation refers to regularly replacing tokens by generating new tokens and deactivating old ones.
By regularly changing tokens, you ensure that even if a token is compromised, it becomes outdated after a specific time frame, which limits the possible risk to your account data.
This process should be followed for each token.
To remove an existing API token:
Once a token has been removed, all existing integrations, reports, and other tools utilising this token for authentication with Felix API will be considered unauthorised. It is currently impossible to restore a token once removed, therefore, please check that all applications have been migrated before taking this irreversible action.