API Tokens

In order to use the Loadmill npm module or the Loadmill REST API, you will need to generate an API Token.

Generating a Token

API tokens can be generated via Settings > Security: enter a description for the token's intended usage and click GENERATE.

You will be given an arbitrary string of characters that will be shown to you ONLY ONCE - this is your API token, make sure to copy and store it in a safe place.

Using a Token

Tokens may be used in one of three ways:

  1. Passed in the options object to the Loadmill npm module, e.g. require('loadmill')({token: "ewszIIzEDIeORLwTSrcEvrKKEWQeR9yzQqyCCKlK"})

  2. Given as a basic authentication username with a blank password, e.g. https://[email protected]/api/tests

  3. Given in an Authorization HTTP header as a bearer token, e.g. Authorization: Bearer ewszIIzEDIeORLwTSrcEvrKKEWQeR9yzQqyCCKlK

Protecting Tokens

An API token enables its bearer to create and run load tests within your account. You can do almost anything you can do in our web interface using tokens, except changing your password, making payments and generating more tokens.

Therefore, you should keep your token as safe as you can from untrusted third parties. If you suspect it may have been compromised, you may revoke the token via Settings > Security and generate a new one.