You can manage the use of tokens in the admin client:

Tokens can be used for authentication when using the rest API. The list of currently active tokens is displayed in this view.

New tokens can be created by selecting the user which should be impersonated, an expiration date and a description.

It is also possible to allow users to create tokens from the main clients user menu once that option has been enabled.