Your account and workspaceCreate your account and workspaceSign in to your accountProtect your account with 2FAAuthenticate sensitive actionsReset your passwordProfile, theme, and languageCreate and revoke access tokensInvite people to your teamAccept an inviteManage members and accessCreate and manage groupsRoles and permissions by moduleConfigure name, URL, and hoursCreate and switch teamsUpgrade from personal space to organizationPlan, seats, and invoicesNavigate the workspaceSearch with the command paletteKeep up with notificationsKeyboard shortcutsTroubleshooting
SECURITYGuide

Create and revoke access tokens

Personal access tokens authenticate Movitera®'s CLI, the browser extension, and the SDK against your team's vault. Create a token when one of those tools needs it, and revoke it when it's no longer needed.

When to create one manually

Most of the time you don't create the token by hand: signing in with the CLI, the extension, and Movitera Link opens an authorization page that creates the token for you. Create one manually for CI/CD pipelines and for the SDK.

Create a token

  1. 1

    Check the selected team.

    The token belongs to the current team. If it's for another team, switch first in the sidebar's team switcher.

  2. 2

    Open `Settings` → `Access tokens`.

    The "Tokens de acesso do cofre" (vault access tokens) card lists and creates the tokens.

  3. 3

    Click `Criar novo token` (create new token).

    Creating one requires a recent second-factor confirmation — the dialog opens on its own if needed. See Authenticate sensitive actions.

  4. 4

    Fill in the `Criar token de acesso` (create access token) dialog.

    Nome (name — e.g. "meu macbook · cli"), Tipo de cliente (client type: CLI, SDK, Extensão de navegador for the browser extension, or Outro for other), and Expira em (expires in — 7 to 365 days). The Nunca expira (never expires) option appears for Vault managers.

  5. 5

    Click `Criar token` (create token) and store the secret.

    The Seu token de acesso (your access token) dialog shows the value a single time. Click Copiar (copy), paste it at its destination — the tool's setup or your CI's secret manager — and finish with Já salvei — concluir (saved it — finish).

    result
    The token appears in the "Tokens ativos" (active tokens) card, with the type and expiry you chose.

The secret appears a single time

"Guarde o token agora — você não poderá vê-lo novamente. Se perder, será necessário gerar um novo." (store the token now — you won't be able to see it again; if you lose it, you'll need to generate a new one). Lost the value? Revoke the token and create another.

Keep track of active tokens

The "Tokens ativos" (active tokens) card shows each token with its name, type (CLI, SDK, Extensão, Agente, Outro), the secret's prefix, the last use, and the expiry. Tokens created by Movitera Link appear with the Agente (agent) type.

  • "Nunca usado" (never used) — the token hasn't authenticated any tool yet.
  • "Expira em N dias" (expires in N days) — highlighted when 7 days or fewer remain.
  • "Nunca expira" (never expires) — no deadline; review these tokens regularly.
  • "Expirado" (expired) — stopped working; create a new one if the tool still needs it.
  • "Revogado" (revoked) — kept in the list, struck through, for history.

Revoke a token

  1. 1

    Click `Revogar` (revoke) on the token's row.

    To revoke several at once, select them with the checkboxes and use Revogar selecionados (revoke selected).

  2. 2

    Confirm in the "Revogar token?" (revoke token?) dialog.

    result
    "Token revogado com sucesso." (token revoked)

Revocation is immediate and can't be undone

"Qualquer CLI ou extensão usando este token deixará de funcionar imediatamente. Esta ação não pode ser desfeita." (any CLI or extension using this token stops working immediately; this action can't be undone). The affected tool will need a new sign-in or token.

Next

Authenticate sensitive actionsProtect your account with 2FATroubleshooting