From 1e46290727ec02ed82acf4436a3fe9f0e3ca416e Mon Sep 17 00:00:00 2001
From: Sangeetha <sangeethailango21@gmail.com>
Date: Wed, 30 Apr 2025 19:51:04 +0530
Subject: [PATCH] [WEB-3958] chore: allow members and admins to create api
 tokens (#6979)

* chore: allow members and admins to create api tokens

* chore: change permission for service api token
---
 apiserver/plane/app/views/api.py | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/apiserver/plane/app/views/api.py b/apiserver/plane/app/views/api.py
index 732d96832..98a2588a1 100644
--- a/apiserver/plane/app/views/api.py
+++ b/apiserver/plane/app/views/api.py
@@ -9,11 +9,11 @@ from rest_framework import status
 from .base import BaseAPIView
 from plane.db.models import APIToken, Workspace
 from plane.app.serializers import APITokenSerializer, APITokenReadSerializer
-from plane.app.permissions import WorkspaceOwnerPermission
+from plane.app.permissions import WorkspaceEntityPermission
 
 
 class ApiTokenEndpoint(BaseAPIView):
-    permission_classes = [WorkspaceOwnerPermission]
+    permission_classes = [WorkspaceEntityPermission]
 
     def post(self, request, slug):
         label = request.data.get("label", str(uuid4().hex))
@@ -68,7 +68,7 @@ class ApiTokenEndpoint(BaseAPIView):
 
 
 class ServiceApiTokenEndpoint(BaseAPIView):
-    permission_classes = [WorkspaceOwnerPermission]
+    permission_classes = [WorkspaceEntityPermission]
 
     def post(self, request, slug):
         workspace = Workspace.objects.get(slug=slug)