How do I obtain an API access token for an account?
Canvas allows for programmatic access to some pieces of information via the Canvas API. API calls require authorization and are made on behalf of an authorized user.
You can see the most up-to-date Canvas API documentation, which may or may not be accurate for locally installed instances of Canvas. If you are not using Canvas Cloud, talk to your site administrator about getting an accurate set of API documentation. Documentation can be generated by running rake doc:api on the console.
Once you have a Canvas login you can create one of these access tokens to use for testing your development projects. This token must be included as a URL query parameter in any API calls made to Canvas.
Canvas tokens align with Canvas permissions. If your Canvas account is deleted or if you are no longer an administrator, your tokens will also be revoked.
Note: API access tokens can only be removed in a user's settings page. Users with masquerading privileges cannot remove the token on behalf of the user.