Data Quality user documentation | Securing your token

It's essential to keep your token secure. If it's compromised, unauthorized parties could access your licensed products, potentially resulting in charges to your account.

One of the easiest and most effective ways to secure your tokens is to periodically change them, just like you do with your passwords.

You can take additional steps to secure your tokens:

Login to the Self Service Portal.
Go to the Deployments section to view your account's deployments.
Select the Deployment you want to update. Once it opens, go to the Tokens tab and click the Edit button in the Action column.
From here, you can choose from the following security settings:
- Specify CORS origin domains. By doing this, you make sure that only the API requests made from the domains you've specified are allowed.
- Specify permitted URLs. By doing this, you make sure that only API requests made from the URLs you've specified are allowed.
- Whitelist IPs/IP ranges. By doing this, you make sure that only API requests made from the IPs/IP ranges you've specified are allowed.

IP Whitelisting is mandatory for data assets related to Experian Emergency Service Proposition.
Please ensure your IPs/IP ranges are whitelisted via the Self Service Portal.

For even greater security, we would advise against storing your token in a client-side JavaScript application and making direct API calls from there. Instead, we recommend making a secure call to your own back-end and then let your server-side application make the API call on behalf of your front-end, before returning the response to your client-side app. In this way your API credentials are secured.

Was this helpful?

Previous: Creating tokens

Next: Token FAQs

Securing your token

Self Service Portal

Tokens