Skip to main content

Retool API authentication

Learn how to authenticate Retool API requests.

Available on:Enterprise plan

Retool API is currently in beta. Reach out to your Retool account team to get access.

The Retool API uses access tokens to authenticate requests. Organization admins can create access tokens from their organization's Settings > API page.

Create an access token

  1. Go to Settings > API and click Create new to generate an access token.
  2. Enter a name and description, then select the required scopes.
  3. Copy and save your token, as you can only access it once.

You can create access tokens in the API settings for your organization.

Retool RPC Access Token

Specify scopes and permissions

When you create an access token, you specify scopes that determine its level of access. Each scope has a set of permissions to control what operations are allowed when using the token.

Some scopes support individual read and write permissions. Write access also grants Read access.

Not all scopes may yet be available for your organization.

ScopeLevelDescription
Source ControlReadGrants access to read Source control data with the Retool API.
Source ControlWriteGrants access to write Source control data with the Retool API.
UsersReadGrants access to read Users data with the Retool API.
UsersWriteGrants access to write Users data with the Retool API.
GroupsReadGrants access to read Groups data with the Retool API.
GroupsWriteGrants access to write Groups data with the Retool API.
FoldersReadGrants access to read Folders data with the Retool API.
FoldersWriteGrants access to write Folders data with the Retool API.
PermissionsReadGrants access to read Permissions data with the Retool API.
PermissionsWriteGrants access to write Permissions data with the Retool API.
App ThemesReadGrants access to read App Themes data with the Retool API.
App ThemesWriteGrants access to write App Themes data with the Retool API.

Authenticate requests

Authentication is performed using Bearer HTTP authentication with the provided token.

curl -X POST https://retool.example.com/api/v2/apps -H 'Authorization: Bearer $BEARER_TOKEN'

API rate limits

Retool uses a point system for rate limiting where endpoint requests cost a certain number of points. You can use up to 300 points in a 60 second window. If you exceed this, Retool blocks API calls for 60 seconds.

EndpointsPoints
Apps, Folders, Users2
Access Request, App Themes, Environment, Groups, Resources, Resource Configurations, Source Control, Spaces, SSO, User Attributes, User Invite5
Permissions10

Create a Retool API resource

You can create a Retool API resource to interact with it using apps and workflows. Refer to the Retool API resource guide to connect using the OpenAPI integration.