Hashing tokens for extra security

You're viewing Apigee X documentation.
View Apigee Edge documentation.

Apigee hashes all OAuth access and refresh tokens to protect them in the event of a database security breach. You use non-hashed tokens in API calls, and Apigee validates them against the hashed versions in the database.