API Tokens are great but difficult to identify which are being used in order to remove unused one for better security. It'd be great if there was a way we could track the different API token usage within our instance.
did you mean developer token as in developer.domo.com
or access token as in domo -- admin -- access token?
i think you'd want both and to be able to differentiate between both so users could track API usage
It would be great for both types of tokens - API Tokens (Admin -> Access Tokens) and Developer Client ID and Secrets (developer.domo.com).
Absolutely agree this is needed from an administrative/governance standpoint. De-provisioning power users carries risk without admin visibility to the developer.domo.com tokens.
This is a HUGE liability! Not being able to review how, where, and when tokens are being used not only poses a security risk, it also makes offboarding essentially impossible. We need to have some way of identifying how access tokens are used, especially since they are sometimes used for activities other than their approved purpose.
