# Token status

An API token allows you to authenticate requests to the [REST API](https://docs.platform.softwareone.com/developer-resources/rest-api).

A token can currently exist in these states: **Active**, **Disabled**, or **Deleted**. The following diagram shows the transitions between these states:

<figure><img src="https://1674205915-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FZ5DNbniz33mXCZoO62Rm%2Fuploads%2F8DB7o343WjEs9InlII6R%2Fstate_diagram_apiToken.png?alt=media&#x26;token=1bdafe47-12de-4675-9552-b4e3c4fb7b9f" alt=""><figcaption><p>The state transition diagram of an API token.</p></figcaption></figure>

The following table provides a description of the different statuses:

<table><thead><tr><th width="124">State</th><th>Definition</th></tr></thead><tbody><tr><td><strong>Active</strong></td><td>The token has been authenticated in the account. It will allow access to the endpoint.</td></tr><tr><td><strong>Disabled</strong></td><td>The token has been temporarily deactivated. Any attempts to access the endpoint will return an error.</td></tr><tr><td><strong>Deleted</strong></td><td>The token has been permanently removed from the system. This state is not visible to the client or vendor account users.</td></tr></tbody></table>