> ## Documentation Index
> Fetch the complete documentation index at: https://actianvectorai-docs-low-effort-fixes.mintlify.site/llms.txt
> Use this file to discover all available pages before exploring further.

# List access tokens

> Returns a list of all access tokens. The response does not include the raw token values.

Requires `auth_enabled=true` and an admin access token or admin JWT.

Timestamps are returned as RFC 3339 UTC strings. When `will_expire` is `false`, `expired_at` is `null`.




## OpenAPI

````yaml get /auth/api_keys
openapi: 3.0.3
info:
  title: Actian VectorAI DB - Authentication API
  description: Access token and admin user management for VectorAI DB.
  version: 1.0.0
  contact:
    name: Actian Corporation
    url: https://www.actian.com
servers:
  - url: http://localhost:6573
    description: Local development server (REST API)
  - url: https://api.vectorai.actian.com
    description: Production server
security:
  - bearerAuth: []
tags:
  - name: Access Tokens
    description: Create, list, rotate, and delete access tokens.
  - name: Admin User
    description: Create and manage the admin user, login, and authentication settings.
paths:
  /auth/api_keys:
    get:
      tags:
        - Access Tokens
      summary: List access tokens
      description: >
        Returns a list of all access tokens. The response does not include the
        raw token values.


        Requires `auth_enabled=true` and an admin access token or admin JWT.


        Timestamps are returned as RFC 3339 UTC strings. When `will_expire` is
        `false`, `expired_at` is `null`.
      operationId: list_access_tokens
      parameters:
        - name: Authorization
          in: header
          required: true
          schema:
            type: string
          description: >-
            Admin JWT or admin access token. Format `Bearer
            <admin-jwt-or-access-token>`.
      responses:
        '200':
          description: List of access tokens.
          content:
            application/json:
              schema:
                type: array
                items:
                  type: object
                  properties:
                    id:
                      type: integer
                      description: Unique identifier for the access token.
                    name:
                      type: string
                      description: Human-readable name for the token.
                    description:
                      type: string
                      description: Description of the token's intended use.
                    created_at:
                      type: string
                      format: date-time
                      description: >-
                        Timestamp when the token was created, in RFC 3339 UTC
                        format.
                    expired_at:
                      type: string
                      format: date-time
                      nullable: true
                      description: >-
                        Timestamp when the token expires. `null` when
                        `will_expire` is `false`.
                    will_expire:
                      type: boolean
                      description: Whether the token has an expiration date.
                    permission:
                      type: string
                      description: Comma-separated permission names assigned to the token.
              examples:
                success:
                  value:
                    - id: 12
                      name: reader-admin-token
                      description: >-
                        Used by the analytics dashboard to run read-only admin
                        checks.
                      created_at: '2026-04-02T08:30:00Z'
                      expired_at: '2026-04-03T08:30:00Z'
                      will_expire: true
                      permission: read,admin
                    - id: 13
                      name: writer-token
                      description: Used by the nightly import job.
                      created_at: '2026-04-02T09:00:00Z'
                      expired_at: null
                      will_expire: false
                      permission: write
        '403':
          description: Authentication is not enabled on the server.
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/ErrorResponse'
      x-codeSamples:
        - lang: cURL
          label: List access tokens
          source: |
            curl -X GET http://localhost:6573/auth/api_keys \
              -H "Accept: application/json" \
              -H 'Authorization: Bearer <admin-jwt-or-access-token>'
components:
  schemas:
    ErrorResponse:
      type: object
      properties:
        status:
          type: string
          description: Error status indicator.
        message:
          type: string
          description: Human-readable error description.
  securitySchemes:
    bearerAuth:
      type: http
      scheme: bearer
      bearerFormat: JWT
      description: Admin JWT obtained from the login endpoint.

````