The new feature "Show export URL" is very valuable in giving everyone quick access to the API and seeing how the URL is constructed, making it easy to share, etc.
However for security reasons we would not want to reveal the full token_auth on screen.
Similarly in the Personal settings page where the
token_auth is displayed to the user, it requires an extra click to reveal the full token.
So the goal if this issue is to slightly change the behavior, proposal:
Is this really needed considering you already have to click to see it?