> ## Documentation Index > Fetch the complete documentation index at: https://api-portal.etoro.com/llms.txt > Use this file to discover all available pages before exploring further. # Create User Token > Creates a new user token for the specified agent-portfolio. ## OpenAPI ````yaml /api-reference/openapi.json post /api/v1/agent-portfolios/{agentPortfolioId}/user-tokens openapi: 3.0.1 info: title: eToro Api version: v1.206.0 description: >- eToro’s public API provides access to real-time financial data, trading insights, and account management features, allowing developers to integrate eToro’s services into their applications. With access to market prices, historical data, and social trading information, the API empowers users to enhance their trading strategies. Designed for security and scalability, the eToro API ensures smooth and reliable integration for a variety of financial applications. For more details on integrating with eToro's public WebSocket service, please refer to the dedicated [WebSocket documentation](./websocket/websocket-doc.html). servers: - url: https://public-api.etoro.com description: eToro Public API security: [] tags: - name: Agent Portfolios - name: Watchlists - name: Feeds - name: Asset Explorer - name: Market Data - name: Identity - name: Notifications - name: PI Data - name: Comments - name: Trading Demo - name: Trading Real - name: Users Info - name: Deprecated paths: /api/v1/agent-portfolios/{agentPortfolioId}/user-tokens: post: tags: - Agent Portfolios summary: Create User Token description: Creates a new user token for the specified agent-portfolio. operationId: createAgentPortfolioUserToken parameters: - name: x-request-id in: header required: true schema: type: string format: uuid example: cd97320f-9968-4c31-a5c1-a2a36b333d13 description: A unique request identifier. - name: x-api-key in: header required: true schema: type: string format: password example: lhgfaslk21490FAScVPkdsb53F9dNkfHG4faZSG5vfjndfcfgdssdgsdHF4663 description: API key for authentication. - name: x-user-key in: header required: true schema: type: string format: password example: >- eyJlYW4iOiJVbnJlZ2lzdGVyZWRBcHBsaWNhdGlvbiIsImVrIjoiOE5sZ2cwcW5EUVdROUFNWGpXT2lmOWktZnpidG5KcUlqWGJ3WHJZZkpZcldrbG90ZEhvLVBjSWhQaU8xU1ZtMW84aU1WZGZqN2xWNzFjLXFxLmcybXE1dnh4Q1hUT25xaWRUaTFlcEhmVk1fIn0_ description: User-specific authentication key. - name: agentPortfolioId in: path required: true schema: type: string format: uuid description: The unique identifier of the agent-portfolio. requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/CreateUserTokenRequest' responses: '201': description: User token created successfully content: application/json: schema: $ref: '#/components/schemas/CreateUserTokenResponse' '400': description: Bad Request content: application/json: schema: $ref: '#/components/schemas/ErrorResponse' examples: ScopeIdsRequired: summary: Scope IDs are required value: errorCode: ScopeIdsRequired errorMessage: ScopeIds is required InvalidIp: summary: Invalid IP address value: errorCode: IpsWhitelistInvalidIp errorMessage: IpsWhitelist contains an invalid IPv4 address '401': description: Unauthorized content: application/json: schema: $ref: '#/components/schemas/ErrorResponse' example: errorCode: Unauthorized errorMessage: Unauthorized '404': description: Agent-portfolio not found content: application/json: schema: $ref: '#/components/schemas/ErrorResponse' example: errorCode: NotFound errorMessage: Agent-portfolio not found '429': description: Too Many Requests content: application/json: schema: $ref: '#/components/schemas/ErrorResponse' example: errorCode: TooManyRequests errorMessage: Too many requests '500': description: Internal Server Error content: application/json: schema: $ref: '#/components/schemas/ErrorResponse' example: errorCode: UnhandledException errorMessage: Global Error components: schemas: CreateUserTokenRequest: type: object properties: userTokenName: type: string description: A human-readable name to identify the user token. example: my-trading-token scopeIds: type: array items: type: integer description: >- The set of permission scope identifiers to grant to this token. Available scopes: 200 = etoro-public:real:read, 201 = etoro-public:demo:read, 202 = etoro-public:real:write, 203 = etoro-public:demo:write. example: - 200 - 202 ipsWhitelist: type: array items: type: string description: An optional set of IPv4 addresses allowed to use this token. example: - 192.168.1.1 expiresAt: type: string format: date-time description: An optional expiration date and time for the token in UTC. example: '2026-12-31T23:59:59Z' required: - userTokenName - scopeIds CreateUserTokenResponse: type: object properties: userTokenId: type: string format: uuid description: The unique identifier of the newly created user token. example: f9e8d7c6-b5a4-3210-fedc-ba9876543210 userToken: type: string description: The generated user token secret. Only available at creation time. example: sk_live_a1b2c3d4e5f6... ErrorResponse: type: object properties: errorCode: type: string description: >- Machine-readable error code (e.g. `ScopeIdInvalid`, `ScopeIdsDuplicateItems`). errorMessage: type: string description: Human-readable error description. ````