Tokens are secure credentials used to authenticate requests and control access to licensed products within a deployment. They allow us to identify which products you are entitled to use, and all token activity is recorded for usage tracking and reporting.
API tokens authenticate your API requests and identify which products your deployment is entitled to use. They also ensure that all requests are correctly attributed for usage tracking and auditing purposes.
Integration tokens are created through the Integration Wizard and simplify connecting your website or BigCommerce store to our real‑time validation services. They authenticate traffic from your site to our APIs and carry the same entitlement and usage tracking as other tokens.
OAuth 2.0 provides delegated, user‑specific authentication using client ID and secret credentials to obtain temporary access tokens. Each deployment supports up to two active OAuth tokens, and their usage is tracked just like any other token.
We strongly recommend that you secure your tokens to prevent unauthorized parties from using your licensed products.
