Skip to main content

Grafana Token

Description

General

  • Documentation: https://grafana.com/docs/grafana/latest/http_api/auth/
  • Summary: Grafana is an open-source analytics and visualization web application. It provides graphs, charts and alerting when connected to data sources. The Grafana backend exposes an HTTP API, the same API is used by the frontend to do everything from saving dashboards, creating users and updating data sources. Authentication can be performed via an API token that is therefore sensitive.
  • IPs allowlist: As of the time of writing this documentation, this feature is not yet supported.
  • Scopes: Three roles can be associated to a Grafana token: Viewer, Editor or Admin.

Revoke the secret

Tokens can be revoked either from the grafana dashboard, or with an API call authenticated using a session cookie.

Check for suspicious activity

As of the time of writing this documentation, this feature is not yet supported.

Details for Grafana personal token

  • Family: Api

  • Category: Monitoring

  • Company: Grafana

  • High recall: True

  • Validity check available: False

  • Analyzer available: False

  • Minimum number of matches: 1

  • Occurrences found for one million commits: 3.09

  • Prefixed: True

  • PreValidators:

- type: ContentWhitelistPreValidator
  patterns:
    - eyjrijoi

Examples

- text: |
    // Add grafana_TOKEN to your environment variables
    string token = "eyJrIjoiK0tTcps1UlY6RnFKDFFVaEFrNFJRaE2XamIrPrZYbk"
  apikey: eyJrIjoiK0tTcps1UlY6RnFKDFFVaEFrNFJRaE2XamIrPrZYbk

Details for Grafana cloud api key

  • Family: Api

  • Category: Monitoring

  • Company: Grafana

  • High recall: False

  • Validity check available: True

  • Analyzer available: False

  • On-premise instances exist: False

  • Only valid secrets raise an alert: False

  • Minimum number of matches: 1

  • Occurrences found for one million commits: 1.65

  • Prefixed: False

  • PreValidators:

- type: ContentWhitelistPreValidator
  patterns:
    - glc_eyjvijoi

Examples

- text: glc_eyJvIjoiMjY2MTczIiwibI6Im1ldGEtbW9uaxRvcmluZy10ZXN0IiwiayI6IjAxdKeH7KTUvWuIqCfHlMKE9EhJcZH2to
  apikey: glc_eyJvIjoiMjY2MTczIiwibI6Im1ldGEtbW9uaxRvcmluZy10ZXN0IiwiayI6IjAxdKeH7KTUvWuIqCfHlMKE9EhJcZH2to

# Fat-fingered secret
- text: Xglc_eyJvIjoiMjY2MTczIiwibI6Im1ldGEtbW9uaxRvcmluZy10ZXN0IiwiayI6IjAxdKeH7KTUvWuIqCfHlMKE9EhJcZH2to
  apikey: glc_eyJvIjoiMjY2MTczIiwibI6Im1ldGEtbW9uaxRvcmluZy10ZXN0IiwiayI6IjAxdKeH7KTUvWuIqCfHlMKE9EhJcZH2to
Last updated on

Something we didn’t cover?

See our Roadmap

Subscribe on GitHub

Submit a request

API status