# Authentication for API To use the Snyk API, you must be an Enterprise plan customer and have a token from Snyk. Enterprise users have [access to a personal token under their profile](#how-to-obtain-your-personal-token) and to service account tokens. The personal API token is associated with your Snyk Account and not with a specific Organization. Service accounts are associated with an Organization or a Group. For more information, see [Service accounts](https://docs.snyk.io/~/revisions/8OT8pbepxU4WoUvu2ix6/enterprise-setup/service-accounts). * **Enterprise users should use a service account** to authenticate for any kind of automation. This includes, but is not limited to, CI/CD scanning with the CLI or build system plugins and any automation, including automation with the API. * **Enterprise users should use the personal token** under their user profile for: * Running the CLI locally on their machine; for details, see [Authenticate to use the CLI](https://docs.snyk.io/~/revisions/8OT8pbepxU4WoUvu2ix6/snyk-cli/authenticate-to-use-the-cli). * Authenticating with the IDE manually * Running API calls one time, for example, to test something Note that for free and team plan users, the personal token does not have access to the API and may be used for authenticating to IDE, CLI, and CI/CD integrations only. For details, see [Obtain and use your API token](https://docs.snyk.io/~/revisions/8OT8pbepxU4WoUvu2ix6/getting-started#obtain-and-use-your-snyk-api-token). For additional information, see [Snyk API token permissions users can control](https://docs.snyk.io/~/revisions/8OT8pbepxU4WoUvu2ix6/snyk-api/rest-api/authentication-for-api/snyk-api-token-permissions-users-can-control). ## How to obtain your personal token You can find your personal API token in your personal [General Account Settings](https://app.snyk.io/account) after you register with Snyk and log in. In the **key** field, **Click to show**. Then, highlight and copy the API key. If you want a new API token, select **Revoke & Regenerate.** This will make the previous API token invalid. For details, see [Revoke and regenerate a Snyk API token](https://docs.snyk.io/~/revisions/8OT8pbepxU4WoUvu2ix6/snyk-api/rest-api/authentication-for-api/revoke-and-regenerate-a-snyk-api-token). ## How to use a Snyk API token When using the API directly, provide the API token in an `Authorization` header, as in the following example request, replacing `API_TOKEN` with your token ```bash curl --request GET \ --url "https://api.snyk.io/rest/self?version=2024-06-10" \ --header "Content-Type: application/vnd.api+json" \ --header "Authorization: token API_TOKEN" ``` If you are using the API through [Snyk Apps](https://docs.snyk.io/~/revisions/8OT8pbepxU4WoUvu2ix6/snyk-api/how-to-use-snyk-apps-apis), provide the `access_token` in an `Authorization` header preceded by `bearer` as follows: ``` Authorization: bearer ACCESS_TOKEN ``` Otherwise, a `401 Unauthorized` response will be returned: ```http HTTP/1.1 401 Unauthorized { "status": "401", "code": "Unauthorized" } ``` --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.snyk.io/~/revisions/8OT8pbepxU4WoUvu2ix6/snyk-api/rest-api/authentication-for-api.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.