kumactl generate zone-token [flags]

Generate token using a control plane
$ kumactl generate zone-token --zone zone-1 --valid-for 24h
$ kumactl generate zone-token --zone zone-1 --valid-for 24h --scope egress
$ kumactl generate zone-token --zone zone-1 --valid-for 24h --scope ingress
$ kumactl generate zone-token --zone zone-1 --valid-for 24h --scope ingress --scope egress

Generate token using offline signing key
$ kumactl generate zone-token --zone zone-1 --valid-for 24h --signing-key-path /keys/key.pem --kid 1

  -h, --help                      help for zone-token
      --kid string                ID of the key that is used to issue a token. Required when --signing-key-path is used.
      --scope strings             scope of resources which the token will be able to identify (can be: [ingress egress]) (default [ingress,egress])
      --signing-key-path string   path to a file that contains private signing key. When specified, control plane won't be used to issue the token.
      --valid-for duration        how long the token will be valid (for example "24h")
      --zone string               name of the zone where resides

      --api-timeout duration   the timeout for api calls. It includes connection time, any redirects, and reading the response body. A timeout of zero means no timeout (default 1m0s)
      --config-file string     path to the configuration file to use
      --log-level string       log level: one of off|info|debug (default "off")
      --no-config              if set no config file and config directory will be created