File Explorer

/var/lang/lib/node_modules/npm/man/man1
This explorer reads the filesystem of the server it runs on, so /workspace/user isn't present here. Browsing and the terminal still work against this server's own disk from /.
0 dirs
70 files
npm-token.15.4 KB · 201 lines
1.TH "NPM-TOKEN" "1" "February 2026" "NPM@11.11.0" ""2.SH "NAME"3\fBnpm-token\fR - Manage your authentication tokens4.SS "Synopsis"5.P6.RS 27.nf8npm token list9npm token revoke <id|token>10npm token create11.fi12.RE13.P14Note: This command is unaware of workspaces.15.SS "Description"16.P17This lets you list, create and revoke authentication tokens.18.SS "Listing tokens"19.P20When listing tokens, an abbreviated token will be displayed. For security purposes the full token is not displayed.21.SS "Generating tokens"22.P23When generating tokens, you will be prompted you for your password and, if you have two-factor authentication enabled, an otp.24.P25Please refer to the \fBdocs website\fR \fI\(lahttps://docs.npmjs.com/creating-and-viewing-access-tokens\(ra\fR for more information on generating tokens for CI/CD.26.SS "Revoking tokens"27.P28When revoking a token, you can use the full token (e.g. what you get back from \fBnpm token create\fR, or as can be found in an \fB.npmrc\fR file), or a truncated id. If the given truncated id is not distinct enough to differentiate between multiple existing tokens, you will need to use enough of the id to allow npm to distinguish between them. Full token ids can be found on the \fBnpm website\fR \fI\(lahttps://www.npmjs.com\(ra\fR, or in the \fB--parseable\fR or \fB--json\fR output of \fBnpm token list\fR. This command will NOT accept the truncated token found in the normal \fBnpm token list\fR output.29.P30A revoked token will immediately be removed from the registry and you will no longer be able to use it.31.SS "Configuration"32.SS "\fBname\fR"33.RS 034.IP \(bu 435Default: null36.IP \(bu 437Type: null or String38.RE 039 40.P41When creating a Granular Access Token with \fBnpm token create\fR, this sets the name/description for the token.42.SS "\fBtoken-description\fR"43.RS 044.IP \(bu 445Default: null46.IP \(bu 447Type: null or String48.RE 049 50.P51Description text for the token when using \fBnpm token create\fR.52.SS "\fBexpires\fR"53.RS 054.IP \(bu 455Default: null56.IP \(bu 457Type: null or Number58.RE 059 60.P61When creating a Granular Access Token with \fBnpm token create\fR, this sets the expiration in days. If not specified, the server will determine the default expiration.62.SS "\fBpackages\fR"63.RS 064.IP \(bu 465Default:66.IP \(bu 467Type: null or String (can be set multiple times)68.RE 069 70.P71When creating a Granular Access Token with \fBnpm token create\fR, this limits the token access to specific packages.72.SS "\fBpackages-all\fR"73.RS 074.IP \(bu 475Default: false76.IP \(bu 477Type: Boolean78.RE 079 80.P81When creating a Granular Access Token with \fBnpm token create\fR, grants the token access to all packages instead of limiting to specific packages.82.SS "\fBscopes\fR"83.RS 084.IP \(bu 485Default: null86.IP \(bu 487Type: null or String (can be set multiple times)88.RE 089 90.P91When creating a Granular Access Token with \fBnpm token create\fR, this limits the token access to specific scopes. Provide a scope name (with or without @ prefix).92.SS "\fBorgs\fR"93.RS 094.IP \(bu 495Default: null96.IP \(bu 497Type: null or String (can be set multiple times)98.RE 099 100.P101When creating a Granular Access Token with \fBnpm token create\fR, this limits the token access to specific organizations.102.SS "\fBpackages-and-scopes-permission\fR"103.RS 0104.IP \(bu 4105Default: null106.IP \(bu 4107Type: null, "read-only", "read-write", or "no-access"108.RE 0109 110.P111When creating a Granular Access Token with \fBnpm token create\fR, sets the permission level for packages and scopes. Options are "read-only", "read-write", or "no-access".112.SS "\fBorgs-permission\fR"113.RS 0114.IP \(bu 4115Default: null116.IP \(bu 4117Type: null, "read-only", "read-write", or "no-access"118.RE 0119 120.P121When creating a Granular Access Token with \fBnpm token create\fR, sets the permission level for organizations. Options are "read-only", "read-write", or "no-access".122.SS "\fBcidr\fR"123.RS 0124.IP \(bu 4125Default: null126.IP \(bu 4127Type: null or String (can be set multiple times)128.RE 0129 130.P131This is a list of CIDR address to be used when configuring limited access tokens with the \fBnpm token create\fR command.132.SS "\fBbypass-2fa\fR"133.RS 0134.IP \(bu 4135Default: false136.IP \(bu 4137Type: Boolean138.RE 0139 140.P141When creating a Granular Access Token with \fBnpm token create\fR, setting this to true will allow the token to bypass two-factor authentication. This is useful for automation and CI/CD workflows.142.SS "\fBpassword\fR"143.RS 0144.IP \(bu 4145Default: null146.IP \(bu 4147Type: null or String148.RE 0149 150.P151Password for authentication. Can be provided via command line when creating tokens, though it's generally safer to be prompted for it.152.SS "\fBregistry\fR"153.RS 0154.IP \(bu 4155Default: "https://registry.npmjs.org/"156.IP \(bu 4157Type: URL158.RE 0159 160.P161The base URL of the npm registry.162.SS "\fBotp\fR"163.RS 0164.IP \(bu 4165Default: null166.IP \(bu 4167Type: null or String168.RE 0169 170.P171This is a one-time password from a two-factor authenticator. It's needed when publishing or changing package permissions with \fBnpm access\fR.172.P173If not set, and a registry response fails with a challenge for a one-time password, npm will prompt on the command line for one.174.SS "\fBread-only\fR"175.RS 0176.IP \(bu 4177Default: false178.IP \(bu 4179Type: Boolean180.RE 0181 182.P183This is used to mark a token as unable to publish when configuring limited access tokens with the \fBnpm token create\fR command.184.SS "See Also"185.RS 0186.IP \(bu 4187npm help adduser188.IP \(bu 4189npm help registry190.IP \(bu 4191npm help config192.IP \(bu 4193npm help npmrc194.IP \(bu 4195npm help owner196.IP \(bu 4197npm help whoami198.IP \(bu 4199npm help profile200.RE 0201