2. Identity & Access: API Tokens

Identification tokens provide a secure, programmatic way to authenticate and authorize external applications or scripts when interacting with Wifox’s API. By generating a token tied to a specific role and (optionally) limiting it to certain IP addresses, you can grant granular access without exposing user passwords.

Use Cases

Server-to-Server API Calls: Create a token named BackendAutomation with the Role “CB Accounts & Transactions” so a nightly batch job can fetch balances and generate reports.
Third-Party Integration: If you connect an external fraud-detection service, generate a token limited to Clients, Actions, and Logs modules, then whitelist only the IP range where that vendor’s servers reside.
Temporary Scripts or Tests: Use a short-lived token (set an expiration date for 24 hours later) when testing new endpoints via Postman. Once the tests complete, let it expire automatically.
Mobile or Webhooks: When a webhook receiver needs to fetch client data, create a token named WebhookListener with the minimal Role (e.g., read-only “Clients” + “KYC Documents”) and restrict it to your webhook server’s IP.

Where to Find Identification Tokens

Navigate to Security → Identification Tokens: Scroll down to the Security section and click Identification tokens. This opens the Identification Tokens list view.

Identification Tokens List View

Once you land on the Identification Tokens page, you’ll see a table with these columns:

Column	Description
Token	The token’s name (a unique identifier you assigned). Clicking it will open the edit panel.
Permissions	A list of modules and API scopes this token can access (e.g., `Clients`, `CB Assets`, `Projects`, etc.).
Whitelisted IPs	0–many IP addresses or CIDR ranges from which the token is valid. Blank means no IP restriction.
Expired Date	(Optional) If set, the token will stop working after this date—use the calendar icon to pick a date.

Permissions lists each module (e.g., “Clients,” “CB Wallets,” “Projects,” “Desks,” etc.) that the token can access. If there are more than a few scopes, the table will show “+X Show all” to reveal the rest.
Whitelisted IPs can be individual IPv4/IPv6 addresses or CIDR ranges (e.g., 192.168.31.0/24). The token will only be accepted when the request originates from one of these allowed IPs.
Expired Date is blank if no expiration was set. Otherwise, tokens stop working once the date passes.

Click the token name itself (e.g., NewIdentForTest) to open the Edit Identification Token drawer.

Creating a New Identification Token

To generate a brand-new token, click the + Add button in the top-right corner of the list view. This opens the Add Identification Token drawer:

Name:
Enter a clear, descriptive name for your token (e.g., MyIntegrationService, ReportingScript, PostmanUser, etc.).
The name must be unique among all existing tokens.
Role:
Select the Role that determines which modules and API endpoints the token can access.
A Role is defined in Settings → Roles and groups permissions for specific modules (e.g., “Read-only Clients,” “Full CB Access,” “Analytics Only”).
When you choose a Role from this dropdown, all modules and scopes assigned to that Role will be inherited automatically.
Expired Date (Optional):
Click the calendar icon to set an expiration date (DD/MM/YYYY).
Once the date is reached, the token becomes invalid—useful for short-lived integrations or security best practices.
Whitelist (Range of IPs):
If you want to restrict token usage to particular IP addresses, click + New IP to add one or more entries.
You can enter a single address (e.g., 203.0.113.45) or a subnet (e.g., 192.168.1.0/24).
If your integration only runs from your office or a known server, adding IP restrictions prevents the token from working elsewhere.
Generate Token:
Once you’ve filled in Name, Role, (optional) Expired Date, and (optional) Whitelisted IPs, click Generate token.
The system will display a newly created alphanumeric token string (e.g., AbCdEfGhIjKlMnOpQrStUvWxYz1234567890).
Be sure to copy and store this token value immediately—this is the only time it’s shown in full.
After generation, the token will appear in the list view with its associated permissions and settings.

Editing an Existing Identification Token

To modify an existing token’s properties (e.g., add/remove an IP restriction, update the expiration date, or change its Role), follow these steps:

Click the Token Name in the list (or click the ✏️ pencil icon under “Actions”).
The Edit Identification Token drawer slides out from the right.
Adjust any of these fields:
Name (if you want to rename it)
Role (select a different Role to alter the token’s permissions)
Expired Date (change or clear the date)
Whitelist (click + New IP to add more addresses, or click the 🗑️ icon next to an IP to remove it)
Save your changes.

The token’s underlying string does not change unless you explicitly delete and recreate the token—a Role or date change does not regenerate the secret value.

After saving, the updated permissions, IP whitelist, or expiration date take effect immediately.

Deleting an Identification Token

If you no longer need a token or suspect it has been compromised, you can permanently remove it:

Locate the Token in the list view.
Click the 🗑️ Delete icon in the “Actions” column for that row.
A confirmation pop-up appears:
Are you sure? This action cannot be undone. [Cancel] [Delete]
Click Delete to proceed.

The token is removed instantly—any application using that token string will receive authentication errors going forward.

Warning: Deleted tokens cannot be recovered. If an external system still relies on that token, you’ll need to generate a brand new one and update your integration.

1. What is WBCS (Wifox Business Core Solution)

2. WBCS Modules and Their Relationship

1. Analytics: Overview

2. Interactive Charts

3. Customizing Analytics

4. Filtering Date Ranges & Granularity

5. Tooltip and Help Text

1. Projects: Overview

2. Projects: Use Cases

3. How to Create a Project

4. How to Edit a Project

5. How to Delete a Project

1. Desks: Overview

2. Desks: Use Cases

3. How to Create a Desk

4. How to Edit a Desk

5. How to Delete a Desk

1. Affiliate Hub: Overview

2. Affiliate Hub: Use Cases

3. How to Create an Affiliate Hub

4. How to Edit an Affiliate Hub

5. How to Search for an Affiliate Hub

6. How to Configure Affiliate Hub

7. How to Automate Affiliate Hubs

8. How to Search and Filter Leads

9. How to Manually Assign Leads to Desks

10. How to Work With Affiliate Hub Dashboard

11. How to Delete an Affiliate Hub

12. Managing Leads in an Affiliate Hub

13. Configuration of Sources within Affiliate Hub

1. Employees: Overview

2. Employees: Use Cases

3. How to Create an Employee

4. How to Assign an Employee to the Project and Desk

5. How to Edit an Employee

6. How to Filter and Search Employees

7. How to Deactivate an Employee

8. View & Manage the Employee’s Calendar

1. Roles: Overview

2. Roles: Use Cases

3. How to Create a Role

4. How to View Users Assigned to the Role

5. How to Search for a Role

6. How to Edit a Role

7. How to Delete a Role

8. Roles Ranking

1. Clients: Overview

2. Clients: Use Cases

3. How to Create a Client

4. How to Edit a Client

5. How to Reassign a Client

6. How to Filter and Search Clients

7. How to Deactivate a Client

8. How to Import Clients

9. How to Export Clients

10. How to Customize Columns

11. Managing Favourite Clients

12. Clients Duplicates

13. How to Send Messages to Clients

14. AI Voice Filters

1. Actions: Overview

2. Actions: Use Cases

3. Clients Actions Module

4. How to Create an Action

5. How to Edit an Action

6. How to Delete an Action

7. How to Filter the Actions Table

8. How to Search the Actions Table

9. Configuring Action Subtypes

1. Requests: Overview

2. Requests: Use Cases

3. How to Create a Request

4. How to Edit a Request

5. How to Filter or Search a Request

6. Customizing Table Columns in the Requests Module

1. Core Banking: Overview

2. Core Banking: Use Cases

3. General Settings: How to Configure Core Banking

4. How to Set Company Fees

5. How to Set Payment Methods