What is a token?
What a token is
A token is the credential part of a capability. It is the string you paste into a URL so the build knows who is asking and what they are allowed to do. The token is inside the share parameter of every Tap & Go drop.
Why it matters
A model without a token can read public docs: the OIP articles, the capability tree, the why page. A model with a token can also invoke the objects the token is scoped for. The token is the boundary between reading and acting.
What a token looks like
It is a long string in the query parameter: ?share=sh.1783120703.act.0.hbEUXxLh_gAw.CUpJ7aKrYJ3j9-Ma0x_wIi6THDxdaTnX4v3nc1kqih8. Do not try to read it. It is opaque. Use ?explain=1&share=TOKEN to see what it can do.
Machine shape
The token resolves to a capability record in D1: scope, key, expires_at, uses_remaining, revoked, fingerprint. Every invocation checks the record before running. If the record is expired, revoked, or exhausted, the call fails closed.