Managing API tokens

For:
Marketers Agencies Ad Networks
Last update:

AppsFlyerAdmin_us-en.pngAt a glance: Admins issue API tokens to enable users to access data via the AppsFlyer APIs.

 Important!

  • To provide a more secure and reliable experience for API usage, the API V1 token is being replaced with the API V2 token. All APIs supported by token V1 are supported by token V2. To ensure a smooth transition, start using the API V2 token. For more details, see the API token changes bulletin
  • To ensure data security, only admins can view the API tokens page. This means that account users and partners have no access to this page.
  • Keep your tokens safe as they enable access to your data. Don't publish tokens in public code repositories.
  • It's recommended to reset the API token every 180 days.

Retrieving API tokens

To retrieve an API token: 

  1. From the menu bar, access the user menu (email address drop-down at the top right corner).
  2. Select Security center.
  3. In the AppsFlyer API tokens section, click Manage your AppsFlyer API tokens.
  4. The available token (V2.0) is displayed. 
  5. Copy the required token.

Resetting API tokens

 Caution

If you reset a token, then the current token becomes invalid and a replacement token is issued. To prevent data loss, immediately embed the replacement token in your scripts and automated processes.

To reset an API token:

  1. From the menu bar, access the user menu (email address drop-down).
  2. Select Security center.
  3. In the AppsFlyer API tokens section, click Manage your AppsFlyer API tokens.
  4. The available token (V2.0) is displayed. 
  5. Identify which token to reset and click its Reset token link. 
  6. If you want to continue, click Reset token in the dialog box.
  7. Copy the new token.
  8. Embed the replacement token in scripts and automated processes that require a token.

Token type required per API

V1.0 token—Advertiser APIs

API
[Deprecated] Pull raw data
[Deprecated] Pull aggregate data
[Deprecated] Master campaign performance KPIs
[Deprecated] OpenDSR API

V2.0 token—Advertiser APIs

API
Pull API raw data
Pull API aggregate data
Get app list
Cohort
SKAdNetwork aggregate reporting
Copy partner integration settings
Set install referrer decryption key
True Revenue tax API
OpenDSR API
Master API

V2.0 token—Ad network APIs

API
App list for ad networks
Integration with campaign management platforms
Protect360 reports for integrated partners
InCost

Troubleshooting

How can I find out where I still have V1 API tokens implemented?

Use the Audit log to filter out any V1 API tokens still in use. You can then download the data to a CSV file:

  1. Click your email address dropdown > Security center > Audit log > View audit log.
  2. From the Audit log page:
    1. In the search bar, write API Token V1.
    2. In the Service filter, select only API calls and filter the results.
  3. Click the Download icon from the top-right of the page.
    Your CSV file is downloaded and includes your app ID, the service used, and the API call URL.