Managing Security Tokens
When you log in to the Web User Interface, FME Server grants you a security token to use the Web User Interface for a period of 30 minutes. However, FME Server automatically extends this period if you remain logged in for more than 25 minutes. To view your token ID and expiration, click the User Settings icon, and select Manage Tokens > Session Tokens.
To remove, disable, or enable a session token, select it and click Actions > Remove, Disable, or Enable.
Note: Expired session tokens cannot be enabled or disabled.
Working with API Tokens
For development purposes, you can create and manage tokens that allow unauthenticated access to FME Server.
To get started, click the User Settings icon, and select Manage Token > API Tokens.
To Create an API Token
- Click New or, to duplicate an existing token, select it and click Actions > Duplicate.
- On the Create (or Duplicating) API Token page, specify a token Name, Description (optional), Expiration, and Enabled status.
- To grant the user of the token all permissions of the current user, slide the All Permissions control to the right. Otherwise, configure the permissions as desired.
- Access: Access the Run Workspace page.
- Advanced: Access Job Directives when running workspaces.
- Access: Access the Jobs page to view the jobs you have run, or cancel any of your jobs that are currently running or in queue.
- Manage: Access and manage the jobs of all users. You can:
- Cancel any job that is currently running.
- Remove the history of jobs that were previously run.
- Manage Job Queues. (Also requires Manage permission in Engines & Licensing.)
- Create: Create workflows.
- Write: View, edit and remove a workflow.
- Access: Access the Schedules page.
- Create: Create schedules.
- Allow: Edit or delete a schedule.
- Access: Access the Repositories page.
- Create: Create repositories.
- Download: Download workspaces and other repository items from FME Server into Workbench.
- Read: View repository information.
- Publish: Publish workspaces and other items to the repository from Workbench.
- Run: Run repository workspaces from FME Server.
- Remove: Remove a repository, or remove items from a repository.
- Access: Access the Workspace Viewer.
- Access: Access the Publications page.
- Create: Create Notification Service Publications.
- Read: View information about a publication.
- Write: Edit a publication.
- Remove: Delete a publication.
- Access: Access the Subscriptions page.
- Create: Create Notification Service Subscriptions.
- Read: View information about a subscription.
- Write: Edit a subscription.
- Remove: Delete a subscription.
- Access: Access the Topics page.
- Create: Create topics.
- Read: View information about a topic.
- Write: Edit a topic.
- Publish: Publish notifications to a topic.
- Remove: Delete a topic.
- Access: Access the Resources page.
- Create: Create connections to network resources.
- Access: Read and download a file.
- List: List the folders and files of a resource.
- Write: Write to files.
- Upload: Upload files.
- Remove: Delete files.
- Access: Access the Database Connections and Web Connections pages.
- Create: Create connections.
- Manage: Access, create, and remove connections.
- Full Access: Manage web services.
- Access: Access the Projects page.
- Create: Create projects.
- Read: View information about a project.
- Write: Edit a project.
- Delete: Delete a project, or delete items from a project.
- Access: Access the Dashboards page.
- Manage: Configure engines and licensing, except job queues (requires Manage permission in Jobs).
- Manage: Configure users and roles.
- Manage: Configure system cleanup.
- Manage: Configure System Events.
- Click OK.
- Click Download to save the token. After the token downloads, click OK.
WARNING: To guarantee the security of the FME Server, ensure a token's permissions are configured so that it can be used only for its intended purpose, such as running a particular workspace.
Note: Automations requires additional permissions. You are prompted to grant any additional permissions that are required.
Individual Automations:
Individual Schedules:
Note: Access permission is not required to run a workspace. Only Run permission on the applicable repository is required (see below).
Individual Repositories:
Note: Users must also have Allow permission on the applicable service (see Services) when running workspaces.
Note: You must uncheck all five permissions to completely remove a role from membership with a repository.
Individual Publications:
Individual Subscriptions:
Individual Topics:
Individual Resource connections (top-level folders):
Individual Connections:
Individual Projects:
Note: Access or Create permission is not required to have Read/Write/Delete permission on individual projects. These tasks can still be accomplished with the REST API.
To Update an API Token's Expiration or Description
- Click on the token to open it.
- On the Editing page, update the Description and/or Expiration, and click OK.
To Remove, Enable, or Disable an API Token
Select the token and click Actions > Remove, Enable, or Disable.
Alternatively, to enable or disable a token, click on the token. On the Editing page, update the Enabled status, and click OK.