# Token Management

All cards stored with Hellgate can be managed via the endpoints in this section.

The CVC2 security code is only kept in an ephemeral cache for a few minutes. The API allows to manage this resource with these endpoints:
  - check if the CVC2 is still availble
  - request a new session to renew the CVC2 with our SDK
  - consume the token after a successful authorization on an external processor