What is a service token?
A service token (svc_...) is a long-lived credential you create once in the okoro dashboard. It tells the proxy which services your agent is allowed to access and at what permission level.
When a skill runs, it exchanges the service token for a short-lived operation token. The operation token is scoped to a single action, signed, and recorded in the audit log — your service token is never sent to any third-party API.
Create a token
- Go to okoro.ai and sign in.
- Open the Dashboard → Service tokens page.
- Click New token.
- Give it a name (e.g.
trello-local) and select the services and scopes you need. - Copy the token — it starts with
svc_.
Set it in your environment
Add the token to your shell profile or a local .env file that Claude Code loads:
export OKORO_SERVICE_TOKEN=svc_your_token_here
Or, if you use a per-project env file (e.g. .env):
OKORO_SERVICE_TOKEN=svc_your_token_here
Never commit your service token to version control. Add
.envto your.gitignore.
Scope levels
Skills request a scope when they ask for an operation token. Your service token must be configured with at least the required level:
| Scope | What it allows |
|---|---|
read | Fetch data — boards, lists, cards |
write | Create new resources |
update | Modify existing resources |
delete | Permanently remove resources |
Each level is cumulative — a delete token also covers update, write, and read.
Rotate or revoke
Tokens can be rotated or revoked any time from the dashboard. Revoking a token immediately invalidates all operation tokens derived from it.