At Syncro, we’re always looking for ways to improve security standards whenever and wherever possible. We’re delivering on that in a big way today with some new API changes.
Traditionally, platforms will give you an API key that will allow access to all aspects of their software. In some instances that might be okay, but within Syncro our breadth of features is so large that it’s rare an integration would ever need access to every bit of information we expose in our API.
So, we’re introducing API tokens. This new system allows you to generate tokens for specific applications, granting them implicit access to exactly what they need, and nothing they don’t.
Even better, we’re also including the ability to add predefined tokens for our most common integrations, like our direct integration with Pax8. Selecting a predefined token will apply all of the required permissions for you, without you having to do a thing.
Now, when you no longer need an integration to a specific platform, you can simply delete the API token and their access will be immediately revoked, without ever affecting your other integrations. On the flip side, if you have an integration that needs additional access to your Syncro instance, you can easily provide that without exposing that same information to other integrations that don’t need it.
To learn more about Syncro’s API system, check out our Syncro API Help Center article.
Not currently using Syncro? Sign up for a free one-on-one product tour here.
The Syncro Team