<![CDATA[REST API token generation via curl]]>Is there a method available, or planned, to generate a REST API token via curl? My environment currently has tokens set to expire after 72 hours and regenerating it via xo-cli or pulling it through the web UI is an extra manual step.

Being able to run something similar to the below to generate and store a token would help with automating some tasks I am looking to do on a scheduled basis

 curl --location 'https://XOA.company.lan/rest/v0/authorization/token' --data-urlencode 'grant_type=password' --data-urlencode 'username=admin' --data-urlencode 'password=P@$$w0rd'
]]>https://xcp-ng.org/forum/topic/8051/rest-api-token-generation-via-curlRSS for NodeThu, 16 Apr 2026 23:19:43 GMTThu, 07 Dec 2023 14:24:22 GMT60<![CDATA[Reply to REST API token generation via curl on Thu, 07 Dec 2023 17:24:29 GMT]]>@dan89 Yes, you can pass the --expires flag to change the validity of a token. But you cannot go above maxTokenValidity though you can increase it in your xo-server's config.

Example:

xo-cli --createToken --expiresIn 90d https://XOA.company.lan admin password
]]>https://xcp-ng.org/forum/post/68226https://xcp-ng.org/forum/post/68226Thu, 07 Dec 2023 17:24:29 GMT<![CDATA[Reply to REST API token generation via curl on Thu, 07 Dec 2023 16:52:40 GMT]]>@julien-f slightly off topic then, but is there a way to extend token expiration for a single user and not globally? Or to have a single user excluded from the global default?

]]>https://xcp-ng.org/forum/post/68222https://xcp-ng.org/forum/post/68222Thu, 07 Dec 2023 16:52:40 GMT<![CDATA[Reply to REST API token generation via curl on Thu, 07 Dec 2023 16:40:30 GMT]]>@dan89 I understand 🙂

But FYI, xo-cli can be installed on other machines than the XOA.

Also, IMHO, it's better to use longer tokens instead of exposing credentials on your machines.

]]>https://xcp-ng.org/forum/post/68221https://xcp-ng.org/forum/post/68221Thu, 07 Dec 2023 16:40:30 GMT<![CDATA[Reply to REST API token generation via curl on Thu, 07 Dec 2023 16:35:37 GMT]]>@julien-f some of the scripts I need to be run can't always run on the XOA appliance and need to be run on other Linux/Windows hosts so the output can be manipulated for use via other programs/methods.

Having a way to pass authentication through curl would give the ability to generate a token when not running scripts on the main XOA appliance.

]]>https://xcp-ng.org/forum/post/68220https://xcp-ng.org/forum/post/68220Thu, 07 Dec 2023 16:35:37 GMT<![CDATA[Reply to REST API token generation via curl on Thu, 07 Dec 2023 16:03:31 GMT]]>@dan89 Nope, there is no way to achieve that this time.

Why is it easier than xo-cli --createToken https://XOA.company.lan admin password?

]]>https://xcp-ng.org/forum/post/68218https://xcp-ng.org/forum/post/68218Thu, 07 Dec 2023 16:03:31 GMT<![CDATA[Reply to REST API token generation via curl on Thu, 07 Dec 2023 15:57:05 GMT]]>Ping @julien-f

]]>https://xcp-ng.org/forum/post/68217https://xcp-ng.org/forum/post/68217Thu, 07 Dec 2023 15:57:05 GMT