> ## Documentation Index
> Fetch the complete documentation index at: https://docs.galtea.ai/llms.txt
> Use this file to discover all available pages before exploring further.

# List API tokens

> List the authenticated user's API tokens. Secrets are never returned — only id, name, keyId and creation date.



## OpenAPI

````yaml https://api.galtea.ai/openapi.json get /auth/apiTokens
openapi: 3.0.0
info:
  version: 1.0.0
  title: Product Management Service API
  description: API documentation for Product Management Service
  contact:
    name: Galtea AI
servers:
  - url: https://api.galtea.ai
security:
  - bearerAuth: []
tags: []
externalDocs:
  description: Galtea Platform Documentation
  url: https://docs.galtea.ai
paths:
  /auth/apiTokens:
    get:
      tags:
        - api-tokens
      summary: List API tokens
      description: >-
        List the authenticated user's API tokens. Secrets are never returned —
        only id, name, keyId and creation date.
      operationId: listApiTokens
      responses:
        '200':
          description: API tokens listed successfully
          content:
            application/json:
              schema:
                type: object
                required:
                  - apiTokens
                properties:
                  apiTokens:
                    type: array
                    items:
                      $ref: '#/components/schemas/ApiToken'
        '401':
          description: Unauthorized
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/Error'
      security:
        - bearerAuth: []
components:
  schemas:
    ApiToken:
      type: object
      required:
        - id
        - name
        - keyId
        - createdAt
        - keyPreview
      properties:
        id:
          type: string
          example: apiToken_abc123
        name:
          type: string
          example: ci-pipeline
        keyId:
          type: string
          description: Public identifier of the key (the uuid in gsk_<keyId>_<secret>)
        createdAt:
          type: string
          format: date-time
        keyPreview:
          type: string
          description: >-
            Display-only public head of the key (`gsk_<keyId>`). Contains no
            secret; safe to show truncated as `gsk_<keyId>…`.
          example: gsk_3d4d7d38-a5ec-4d9f-94a6-5a3f61db9d7d
    Error:
      type: object
      properties:
        error:
          type: string
          example: Error type
        message:
          type: string
          example: Error message description
  securitySchemes:
    bearerAuth:
      type: http
      scheme: bearer
      description: >-
        API key authorization. Pass your API key in the Authorization header as
        a Bearer token. Both new (`gsk_*`) and legacy (`gsk-`) API keys are
        accepted, e.g. `Authorization: Bearer gsk_...` or `Authorization: Bearer
        gsk-...`.

````