Early bird discounts live! Claim your offer
MemberPass Logo
Back to MemberPass

list_tokens

List the authenticated user's own personal access tokens with abilities and scope tuples split out.

Purpose

List the authenticated user's own personal access tokens with abilities and scope tuples split out. scope:team:... and scope:project:... entries are peeled off the raw abilities array into a structured scopes object for readability. The plaintext token value is never surfaced — minting happens in the dashboard.

Required ability

Token owner only (authenticated user's own tokens). No additional ability is checked — ownership is the permission, and foreign tokens are invisible.

Input schema

{
  "type": "object",
  "properties": {}
}

Output shape

{
  "data": [
    {
      "id": "01HX...",
      "name": "Zapier production",
      "abilities": ["project:view-any", "mcp:full"],
      "abilities_count": 2,
      "scopes": {
        "team_id": "tem_01HX...",
        "project_ids": ["prj_01HX..."]
      },
      "last_used_at": "2026-05-18T09:15:00Z",
      "expires_at": null,
      "created_at": "2026-05-01T10:05:00Z"
    }
  ],
  "meta": { "total": 1 }
}

Example prompts

"Show my active API tokens."

"Which abilities does each of my tokens carry?"

Failure modes

  • AUTHENTICATION_REQUIRED — no authenticated user on the request.

How is this guide?

list_groups

List groups across every team the caller owns or belongs to. Lighter-weight than roles — no permission payload.

revoke_token

Revoke one of the authenticated user's own tokens by id. Self-revocation is refused.

On this page

Purpose
Required ability
Input schema
Output shape
Example prompts
Failure modes
Related

MemberPass is a product designed by you — for you.

No boardroom full of executives deciding what we ships next. Our roadmap always shaped by you with your feedback.

Share feedback or a request