I am implementing Vault for my team to use and store secrets, and we wanted to keep it simple so we decided to go with the default token authentication.
The thing is I can't find a way to manage tokens that were created, so that if I want to revoke a certain person's token, I know exactly which one to revoke.
Does anyone know how to manage tokens in Vault?
You cannot list the tokens because tokens are sensitive information.
You can list token accessors (API docs)
which will give you a value like this
476ea048-ded5-4d07-eeea-938c6b4e43ec
which is safe to share - think of it as a pointer to the token.Then you can lookup the token accessor (API docs) and get a response like this
which will probably help you figure out if the tokens requires revoking or not.