Access token or simply a token is a bearer token, which grants access to the zone. Token is a unique opaque string, that is associated only with one zone.
Token may have an optional expiration date. When token expires, you cannot use it to access the zone.
You can create any number of tokens. The same token may be specified in both profiler UI and in the profiler agent. Or you can create multiple tokens to configure more fine-grained access.
The token is unrecoverable, because the broker never stores tokens as a plain text. If you have lost the token or suspect that it is leaked, then you need to delete it and create a new one. We recommend to follow standard security practices when using the tokens: don't embed tokens directly into code, rotate them periodically, and remove unused tokens.