Token propagation is the practice of carrying an authentication token from one service to another so downstream services can recognise the caller. It is useful, but risky if scope, audience, expiry, or delegation are too broad, because a valid token can become a reusable attack path.
Expanded Definition
Token propagation is the controlled forwarding of a caller’s authentication token across service boundaries so downstream systems can verify identity and context without reauthenticating at every hop. In modern NHI and agentic workflows, this often appears in API gateways, service meshes, and delegated automation chains, where the original token must preserve enough context for authorization while not becoming a reusable credential for unrelated actions. The distinction that matters is between propagation and unrestricted reuse: the former preserves identity for a specific transaction path, while the latter expands the blast radius of a stolen or overprivileged token. Definitions vary across vendors on whether token exchange, token forwarding, and delegated impersonation are part of the same pattern, so practitioners should treat them as related but not identical controls. Standards language around digital identity and token handling is often mapped to broader guidance such as the NIST Cybersecurity Framework 2.0, but no single standard governs this yet. The most common misapplication is forwarding a long-lived bearer token unchanged between services, which occurs when teams optimise for convenience and skip audience restriction or token exchange.
Examples and Use Cases
Implementing token propagation rigorously often introduces operational friction, because tighter audience scoping and shorter lifetimes can require more token exchange logic and more careful service design, forcing organisations to weigh resilience against complexity.
- Microservices pass a short-lived access token from an API gateway to an order service, where the downstream service validates the token audience before calling inventory.
- An AI agent invokes multiple tools in sequence and propagates a delegated token only for the bounded task chain, rather than reusing the same credential across unrelated tools.
- A workload identity is exchanged at each hop so the receiving service sees a constrained downstream token instead of the original upstream credential, reducing lateral movement risk.
- A compromised token found in logs leads investigators to the Salesloft OAuth token breach, where propagation and reuse patterns widened the attacker’s access path.
- Service-to-service designs align token handling with NIST Cybersecurity Framework 2.0 principles by limiting where a token can be accepted and what it can reach.
NHIMG’s research on the Guide to the Secret Sprawl Challenge shows how credential exposure often spreads across operational systems, which is exactly why token propagation must be treated as a scoped trust decision, not a convenience feature.
Why It Matters in NHI Security
Token propagation is a control point for privilege containment. When it is poorly designed, one valid token can become a chain-wide access path across internal APIs, automation services, and AI tool calls. That risk is especially acute for NHIs because service identities do not have a human user to notice unusual access patterns or perform step-up authentication. NHIMG research shows that 91% of former employee tokens remain active after offboarding in one dataset, and 44% of NHI tokens are exposed in the wild through collaboration tools and commits, which makes propagation hygiene inseparable from lifecycle control. In practice, the security question is not whether a token should move, but whether it should remain valid, where it should be accepted, and whether it should be exchanged before use. Good designs reduce replay value through narrow audiences, minimal expiry, and explicit delegation boundaries, while bad designs turn a single leak into repeatable access across the estate. Organisations typically encounter the damage only after a token has been exfiltrated or replayed during an incident, at which point token propagation becomes operationally unavoidable to address.
Standards & Framework Alignment
This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.
OWASP Non-Human Identity Top 10 address the attack and risk surface, while NIST CSF 2.0 and NIST Zero Trust (SP 800-207) set the governance and control requirements practitioners need to meet.
| Framework | Control / Reference | Relevance |
|---|---|---|
| OWASP Non-Human Identity Top 10 | NHI-01 | Token propagation can widen blast radius when bearer tokens are reused across services. |
| NIST CSF 2.0 | PR.AC-4 | Access permissions should be managed so propagated tokens do not overextend trust. |
| NIST Zero Trust (SP 800-207) | SC-3 | Zero trust requires each hop to verify context instead of trusting inherited access. |
Constrain token audience, expiry, and delegation before forwarding tokens between services.
Related resources from NHI Mgmt Group
Deepen Your Knowledge
Reviewed and updated by the NHIMG editorial team on June 20, 2026.
NHI Mgmt Group — the #1 independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org
