Run any Skill in Manus with one click

netalertx-authentication-tokens

Stars6,603

Forks418

UpdatedJanuary 25, 2026 at 21:45

Manage and troubleshoot API tokens and authentication-related secrets. Use this when you need to find, rotate, verify, or debug authentication issues (401/403) in NetAlertX.

Installation

Install with Codex or Claude Copy this prompt, paste it into Codex, Claude, or another assistant, and let it review the skill page and install it for you.

Run Skill in Manus

Source

netalertx

netalertx/NetAlertX

View GitHub Repository View Creator Repositories

Download

Run Skill in Manus

Related occupationsSOC

Based on SOC occupation classification

Information Security AnalystsComputer and Mathematical Occupations·SOC 15-1212

SKILL.md

readonly

name	netalertx-authentication-tokens
description	Manage and troubleshoot API tokens and authentication-related secrets. Use this when you need to find, rotate, verify, or debug authentication issues (401/403) in NetAlertX.

Authentication

Purpose ✅

Explain how to locate, validate, rotate, and troubleshoot API tokens and related authentication settings used by NetAlertX.

Pre-Flight Check (MANDATORY) ⚠️

Ensure the backend is running (use devcontainer services or ps/systemd checks).
Verify the API_TOKEN setting can be read with Python (see below).
If a token-related error occurs, gather logs (/tmp/log/app.log, nginx logs) before changing secrets.

Retrieve the API token (Python — preferred) 🐍

Always use Python helpers to read secrets to avoid accidental exposure in shells or logs:

from helper import get_setting_value
token = get_setting_value("API_TOKEN")

If you must inspect from a running container (read-only), use:

docker exec <CONTAINER_ID> python3 -c "from helper import get_setting_value; print(get_setting_value('API_TOKEN'))"

You can also check the runtime config file:

docker exec <CONTAINER_ID> grep API_TOKEN /data/config/app.conf

Rotate / Generate a new token 🔁

Preferred: Use the web UI (Settings / System) and click Generate for the API_TOKEN field — this updates the value safely and immediately.
Manual: Edit /data/config/app.conf and restart the backend if required (use the existing devcontainer service tasks).
After rotation: verify the value with get_setting_value('API_TOKEN') and update any clients or sync nodes to use the new token.

Troubleshooting 401 / 403 Errors 🔍

Confirm backend is running and reachable.
Confirm get_setting_value('API_TOKEN') returns a non-empty value.
Ensure client requests send the header exactly: Authorization: Bearer <API_TOKEN>.
Check /tmp/log/app.log and plugin logs (e.g., sync plugin) for "Incorrect API Token" messages.
If using multiple nodes, ensure the token matches across nodes for sync operations.
If token appears missing or incorrect, rotate via UI or update app.conf and re-verify.

Best Practices & Security 🔐

Never commit tokens to source control or paste them in public issues. Redact tokens when sharing logs.
Rotate tokens when a secret leak is suspected or per your security policy.
Use get_setting_value() in tests and scripts — do not hardcode secrets.

Related Skills & Docs 📚

testing-workflow — how to use API_TOKEN in tests
settings-management — where settings live and how they are managed
Docs: docs/API.md, docs/API_OLD.md, docs/API_SSE.md

Last updated: 2026-01-23

More from this repository

same repository

netalertx-code-standards

netalertx/NetAlertX

NetAlertX coding standards and conventions. Use this when writing code, reviewing code, or implementing features.

2026-05-246.6k

netalertx-settings-management

netalertx/NetAlertX

Manage NetAlertX configuration settings. Use this when asked to add setting, read config, get_setting_value, ccd, or configure options.

2026-02-126.6k

devcontainer-management

netalertx/NetAlertX

Guide for identifying, managing, and running commands within the NetAlertX development container. Use this when asked to run commands, testing, setup scripts, or troubleshoot container issues.

2026-02-036.6k

mcp-activation

netalertx/NetAlertX

Enables live interaction with the NetAlertX runtime. This skill configures the Model Context Protocol (MCP) connection, granting full API access for debugging, troubleshooting, and real-time operations including database queries, network scans, and device management.

Read before running tests. Detailed instructions for single, standard unit tests (fast), full suites (slow), handling authentication, and obtaining the API Token. Tests must be run when a job is complete.

2026-02-026.6k

name	netalertx-authentication-tokens
description	Manage and troubleshoot API tokens and authentication-related secrets. Use this when you need to find, rotate, verify, or debug authentication issues (401/403) in NetAlertX.

Authentication

Purpose ✅

Explain how to locate, validate, rotate, and troubleshoot API tokens and related authentication settings used by NetAlertX.

Pre-Flight Check (MANDATORY) ⚠️

Ensure the backend is running (use devcontainer services or ps/systemd checks).
Verify the API_TOKEN setting can be read with Python (see below).
If a token-related error occurs, gather logs (/tmp/log/app.log, nginx logs) before changing secrets.

Retrieve the API token (Python — preferred) 🐍

Always use Python helpers to read secrets to avoid accidental exposure in shells or logs:

from helper import get_setting_value
token = get_setting_value("API_TOKEN")

If you must inspect from a running container (read-only), use:

docker exec <CONTAINER_ID> python3 -c "from helper import get_setting_value; print(get_setting_value('API_TOKEN'))"

You can also check the runtime config file:

docker exec <CONTAINER_ID> grep API_TOKEN /data/config/app.conf

Rotate / Generate a new token 🔁

Preferred: Use the web UI (Settings / System) and click Generate for the API_TOKEN field — this updates the value safely and immediately.
Manual: Edit /data/config/app.conf and restart the backend if required (use the existing devcontainer service tasks).
After rotation: verify the value with get_setting_value('API_TOKEN') and update any clients or sync nodes to use the new token.

Troubleshooting 401 / 403 Errors 🔍

Confirm backend is running and reachable.
Confirm get_setting_value('API_TOKEN') returns a non-empty value.
Ensure client requests send the header exactly: Authorization: Bearer <API_TOKEN>.
Check /tmp/log/app.log and plugin logs (e.g., sync plugin) for "Incorrect API Token" messages.
If using multiple nodes, ensure the token matches across nodes for sync operations.
If token appears missing or incorrect, rotate via UI or update app.conf and re-verify.

Best Practices & Security 🔐

Never commit tokens to source control or paste them in public issues. Redact tokens when sharing logs.
Rotate tokens when a secret leak is suspected or per your security policy.
Use get_setting_value() in tests and scripts — do not hardcode secrets.

Related Skills & Docs 📚

testing-workflow — how to use API_TOKEN in tests
settings-management — where settings live and how they are managed
Docs: docs/API.md, docs/API_OLD.md, docs/API_SSE.md

Last updated: 2026-01-23