Authentication

Before you can start querying the monday.com account with the API, you need to provide valid authentication through an access token. Each user has their own API token that grants API access to all the boards they are subscribed to. Currently, we offer our V2 API tokens, which are all personal tokens.

API token permissions

Each personal token can only do actions that the user can do in the UI. For example, if a user cannot access a particular private board, the API token will not be able to access that data either. This extends to any column, item, or account permissions that apply to a user.

App tokens have an additional set of permission scopes that specify which queries and mutations it can access. Personal tokens have all permission scopes.

Accessing API tokens

You can use one of two methods to access your API tokens based on your user level (account admins can use both!)

Admin tab

If you are an admin user on your monday.com account, follow these steps to access your API token:

  1. Log into your monday.com account.
  2. Click on your avatar/profile picture in the top right corner.
  3. Select Administration (this requires you to have admin permissions).
  4. Go to the API section.
  5. Copy your personal token. Please note that you can always regenerate a new token; however, doing so will cause the previous token to expire.

Developer tab

If you are a member user or an admin on your monday.com account, follow these steps to access your API token:

  1. Log into your monday.com account.
  2. Click on your avatar/profile picture in the top right corner.
  3. Select Developer. This will open the Developer Center in another tab.
  4. Click Developer in the top menu.
  5. Select My Access Tokens.
  6. Click on the blue Show button to expose your API token and copy it. Please note that you can always regenerate a new token; however, doing so will cause the previous token to expire.

Using API tokens

Once you retrieve the token from your monday.com account, you can start making requests with the API. Make sure you pass the token to the API in the header of your requests!

Send the API v2 token in the "Authorization" header:

"Authorization:xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"

πŸ“˜

Join our developer community!

We've created a community specifically for our devs where you can search through previous topics to find solutions, ask new questions, hear about new features and updates, and learn tips and tricks from other devs. Come join in on the fun! 😎