Expand my Community achievements bar.

Profile API Token Expiry - extend timeframe or set to never (currently 90 days)

Avatar

Level 4

12/5/22

Description - We are using the profile API to enhance a users profile with a CDP solution. Currently when we generate a token (In Adobe Target), which is then inserted into the CDP solution, it needs to be regenerated and replaced every 90 days in order for the functionality to continue undisturbed.

Why is this feature important to you - The implications of someone not remembering to do this very manual task is large and in an age where personalisation is at the front of most strategies surely this is a small enhancement that would be deemed necessary for implementation in order to minimise risk for customers

How would you like the feature to work - Where Profile tokens are being generated for implementation purposes it would be great to have the ability to choose the timeframe you want the token to expire (i.e. 6,12,24 months) or make it possible to set it as never

Current Behaviour - Currently the profile API token expires after 90days, a new token must be generated and replace the old one.

2 Comments

Avatar

Community Advisor

4/13/23

Hello @Mycal_Tamariki 

One approach to consider is creating a custom script or tool to automate the token regeneration and replacement process. By doing this, you can eliminate the manual task and reduce the risk associated with forgetting to update the token.

This custom script or tool can be set up to:

  1. Automatically generate a new Profile API token in Adobe Target before the current token expires.
  2. Update the CDP solution with the newly generated token.
  3. Schedule the script or tool to run at the desired interval (e.g., every 90 days or another specified duration).

By automating this process, you can ensure that the functionality continues undisturbed, reduce the risk of human error, and focus on personalization strategies without worrying about token expiration.

Avatar

Community Advisor

1/4/24

While access_tokens can be a burden since they expire they are needed to enforce policy and access to control to API.  Leaving an access key with out an expiration would violate a number of client ITSEC policies.