# API Authentication

The Allegro REST API authenticates requests using Bearer tokens. You generate these tokens in the Allegro admin UI — each token is tied to your user account and carries the same permissions.

## Creating a token[​](#creating-a-token "Direct link to Creating a token")

1. Sign in to your Allegro instance.
2. Open the user menu in the top-right corner and choose **Settings**.
3. Select **API Tokens** from the left sidebar.
4. Click **Create Token**, give it a descriptive name (e.g. `data-pipeline`), and confirm.
5. Copy the token value that appears — it is only shown once.

Store your token securely

The token value is displayed only at creation time. If you lose it, delete the token and create a new one.

## Using the token[​](#using-the-token "Direct link to Using the token")

Include the token as a `Bearer` value in the `Authorization` header of every request:

```http
Authorization: Bearer <your-token>

```

**Example with curl:**

```bash
curl https://your-instance.allegrocdp.com/api/v1/audience-members \
  -H "Authorization: Bearer <your-token>" \
  -H "Accept: application/json"

```

## Revoking a token[​](#revoking-a-token "Direct link to Revoking a token")

To revoke a token, return to **Settings → API Tokens**, find the token in the list, and click **Delete**. The token stops working immediately.