Hashicorp Consul ACL Token

Description

General

Documentation: https://developer.hashicorp.com/consul/api-docs/acl/tokens
Summary: HashiCorp Consul is a distributed service mesh that provides a way to connect, secure, and manage services across a cluster. Consul is typically self-hosted, meaning ACL tokens (Access Control List tokens) are managed within an organization's own infrastructure rather than a centralized SaaS provider. This detector identifies ACL tokens used to authenticate with Consul.

Revoke the secret

Because Consul is self-hosted, revocation procedures depend on the specific deployment. In general, the token can be revoked using the /acl/token/:AccessorID endpoint with the DELETE method. The AccessorID can be retrieved from endpoints such as GET /acl/token/self. The token must be included in request headers (for example, using the X-Consul-Token or Authorization header) when making authenticated requests.

Details for `Hashicorp Consul ACL Token`

Family: token
Category: other
High recall: False
Validity check available: False
Analyzer available: False
Revoker available: False
Occurrences found for one million commits: very rare
Prefixed: False

Hashicorp Consul ACL Token

Description

General

Revoke the secret

Details for `Hashicorp Consul ACL Token`

Was this page helpful?

Something we didn’t cover?

See our Roadmap

Subscribe on GitHub

Submit a request

API status

Description​

General​

Revoke the secret​

Details for Hashicorp Consul ACL Token​

Was this page helpful?

Something we didn’t cover?

See our Roadmap

Subscribe on GitHub

Submit a request

API status

Subscribe to our newsletter

Description

General

Revoke the secret

Details for `Hashicorp Consul ACL Token`