The GitBook API uses Personal access tokens to authenticate requests.

You can view and manage your access tokens in the Developer settings of your GitBook user account.

API requests are authenticated using the Bearer Auth scheme. To authenticate a request, provide the token in the Authorization header of the request:

curl -H "Authorization: Bearer <your_access_token>"

Access tokens are tied to the GitBook user account for which they were created. A token provides the same level of access & privileges that its associated GitBook user account would have.

Please be sure to keep your API access tokens secure! Do not share them in emails, chat messages, client-side code or publicly accessible sites.

If you have accidentally shared an API access token publicly, you can revoke it in the Developer settings of your GitBook user account by clicking the X button beside the token.

Last updated