Feature since v1.3.0

API Tokens

Scoped API tokens for REST API access — create tokens with read, operational, or full scope.

Create tokens from the API Tokens screen in the admin panel. Each token has a name, scope, optional expiry, and is SHA-256 hashed at rest. Tokens are accepted via `X-FSWA-Token` header, `Authorization: Bearer`, or `?api_token=` query parameter. Token management itself always requires a WordPress admin session.

Scopes

`read` — GET endpoints only. `operational` — read + toggle webhooks, retry/replay logs, execute queue jobs. `full` — operational + create, update, delete webhooks, schemas, logs.

/ Related

REST API

Ready

Stop losing webhooks.
Start logging them.

Install Plugin→ See the Plugin →

$ wp plugin install flowsystems-webhook-actions --activate

API Tokens

Scopes

/ Related

Stop losing webhooks. Start logging them.

Stop losing webhooks.
Start logging them.