> For the complete documentation index, see [llms.txt](https://help.impact.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://help.impact.com/other/zh/reference-documentation/api-access-tokens-and-changelog/keep-your-access-tokens-secure.md).

# 确保您的访问令牌安全

保持您的访问令牌安全对于保护敏感数据极其重要。以下是一些实用建议，可帮助您保持访问令牌的安全。

<div data-with-frame="true"><figure><img src="/files/396d07933ef25ff27cb61c224a8735ce9f37f2b3" alt=""><figcaption></figcaption></figure></div>

<details>

<summary>凭据的存储与共享</summary>

* 请确保您的凭据仅以安全的方式与授权人员共享。
* 请将您的凭据安全地存储在未经授权的用户或应用程序无法访问的位置。
* 请对您的凭据进行加密，无论是在 [静态存储时](https://en.wikipedia.org/wiki/Data_at_rest) 和 [传输过程中](https://en.wikipedia.org/wiki/Data_in_transit) 都应如此，以增加额外的安全层。

</details>

<details>

<summary>轮换您的凭据</summary>

* 您应定期轮换您的凭据，通过重置访问令牌并更新您的集成以使用新的凭据。

</details>

<details>

<summary>限制令牌范围</summary>

* 创建访问令牌时，只授予其用途所需的范围。限制访问令牌的范围有助于在令牌遭到泄露时减少潜在损害。

</details>

<details>

<summary>重置或撤销令牌</summary>

* 当您启用访问令牌时，还应重置该令牌，并更新所有集成以使用新令牌的凭据。这将确保任何可能已泄露的凭据不再对该令牌有效。
* 如果您怀疑某个令牌已被泄露，请重置该访问令牌。这将立即取消未授权方的所有访问权限。接下来，更新您所有的集成以使用新的凭据。
* 如果某个访问令牌不再需要，请将其禁用或删除。这将立即生效。

</details>

<details>

<summary>联系信息</summary>

* 请务必保持您的技术联系人和访问令牌联系人信息为最新，以便 impact.com 工作人员在需要时就您的 API 令牌与您联系。请选择以下链接之一来更新您的联系信息： [品牌](/brand/zh/what-would-you-like-to-learn-about/account-administration/account-settings/manage-your-account/manage-your-account-information-as-a-brand.md), [合作伙伴](/partner/zh/ni-xiang-liao-jie-shen-me/account-management/account-settings/account-management/manage-your-company-information-as-a-partner.md)，或 [代理机构](/agency/zh/what-would-you-like-to-learn-about/account-settings/manage-your-company-information-as-an-agency.md).

</details>


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://help.impact.com/other/zh/reference-documentation/api-access-tokens-and-changelog/keep-your-access-tokens-secure.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.