Auth

Usage

snyk auth [<API_TOKEN>] [<OPTIONS>]

Description

The snyk auth command authenticates your machine to associate the Snyk CLI with your Snyk account.

Running $ snyk auth opens a browser window with prompts to log in to your Snyk account and authenticate. No repository permissions are needed at this stage, only your email address.

When you have authenticated, you can start using the CLI; see Getting started with the CLI

Note: Beginning with version 1.1293, the Snyk CLI uses OAuth when authenticating through the browser.

OAuth provides improved security by issuing shorter-lived expiring authorizations with the convenience of automatic refresh.

Earlier versions of the Snyk CLI (< 1.1293) obtained a non-expiring API token through a legacy browser interaction.

This authentication method is deprecated but you may use it in the event of problems with OAuth by running snyk auth --auth-type=token. A future release of the CLI will remove this option.

Options

--auth-type=<TYPE>

Specify the <TYPE> of authentication to use. Supported types are oauth (the default beginning with version 1.1293.0) AND token.

--client-secret=<SECRET>

--client-id=<ID>

You can set the client secret and the id can be set in order to use the OAuth2 Client Credentials Grant

Both values must be provided together. They are only valid together with --auth-type=oauth;otherwise they will be ignored.

Value

In some environments and configurations, you must use the <API_TOKEN>; see Authenticate the CLI with your account

The value may be a user token or a service account; see Service accounts

In a CI/CD environment, use the SNYK_TOKEN environment variable; see Configure the Snyk CLI

After setting this environment variable, you can use CLI commands.

Debug

Use the -d option to output the debug logs.

Last updated

More information

Snyk privacy policy

© 2024 Snyk Limited | All product and company names and logos are trademarks of their respective owners.