Documentation
Agora Basics
Console 官网 Community Technical support
English
search-icon

Token

Last updated 2022/02/22 06:28:54

A token is also known as a dynamic key. It serves as an authentication mechanism that checks permissions of app users before they use Agora services.

The following figure shows the process of verifying user permissions with a token:

token-workflow

Developers need to deploy the code provided by Agora to generate tokens on their app servers and send them back to the client. When users use Agora services (such as joining an RTC channel, logging in to the RTM system, entering a whiteboard room), they pass the tokens, and the Agora server checks the user permissions with the information in the tokens.

For different products, the information contained in a token is not exactly the same. Generally speaking, a token includes information about an Agora project (such as the App ID), information about the Agora service to be used (such as the RTC channel name, the UUID of the whiteboard room), user roles or permissions, and the expiration time of the token.

After the token expires, the user cannot use the Agora service. Developers can set the expiration time of the token according to their business needs, and renew the expired tokens in time.

See also:
  • How do I upgrade to token-based authentication?
  • Get a temporary token
  • Generate a token for Agora RTC SDK, On-premise Recording, or Cloud Recording
  • Generate a token for Agora RTM SDK
  • Interactive Whiteboard Token Overview