diff --git a/server/action/organisation/token/route.go b/server/action/organisation/token/route.go
index 4fb385d2..add72371 100644
--- a/server/action/organisation/token/route.go
+++ b/server/action/organisation/token/route.go
@@ -18,6 +18,7 @@ func Router() chi.Router {
 	r.Get("/", list)
 	r.Post("/", create)
 	r.Delete("/{token_id}", delete)
+	r.Post("/validate", validate)
 
 	return r
 }
diff --git a/server/action/organisation/token/validate.go b/server/action/organisation/token/validate.go
new file mode 100644
index 00000000..cfa143f4
--- /dev/null
+++ b/server/action/organisation/token/validate.go
@@ -0,0 +1,79 @@
+package token
+
+import (
+	"encoding/json"
+	"errors"
+	"net/http"
+	"strconv"
+
+	"github.com/factly/kavach-server/model"
+	"github.com/factly/x/errorx"
+	"github.com/factly/x/loggerx"
+	"github.com/factly/x/renderx"
+	"github.com/factly/x/validationx"
+	"github.com/go-chi/chi"
+	"gorm.io/gorm"
+)
+
+// validationBody request body
+type validationBody struct {
+	Token string `json:"token" validate:"required"`
+}
+
+// Validate - validate organisation token
+// @Summary Show a organisation token
+// @Description validate organisation token
+// @Tags OrganisationorganisationsTokens
+// @ID validate-organisation-organisation-token
+// @Produce  json
+// @Param X-Organisation  header string true "Organisation ID"
+// @Param organisation_slug path string true "Application Slug"
+// @Param ValidationBody body ValidationBody true "Validation Body"
+// @Success 200 {object} model.organisation
+// @Router /organisations/{application_id}/tokens/validate [post]
+func validate(w http.ResponseWriter, r *http.Request) {
+	organisation_id := chi.URLParam(r, "organisation_id")
+	if organisation_id == "" {
+		errorx.Render(w, errorx.Parser(errorx.GetMessage("invalid id", http.StatusBadRequest)))
+		return
+	}
+	id, err := strconv.ParseUint(organisation_id, 10, 64)
+	if err != nil {
+		errorx.Render(w, errorx.Parser(errorx.GetMessage("invalid id", http.StatusBadRequest)))
+		return
+	}
+	//parse applicaion_id
+
+	tokenBody := validationBody{}
+	err = json.NewDecoder(r.Body).Decode(&tokenBody)
+	if err != nil {
+		loggerx.Error(err)
+		errorx.Render(w, errorx.Parser(errorx.DecodeError()))
+		return
+	}
+
+	validationError := validationx.Check(tokenBody)
+	if validationError != nil {
+		loggerx.Error(errors.New("validation error"))
+		errorx.Render(w, validationError)
+		return
+	}
+
+	orgToken := model.OrganisationToken{}
+	// Fetch all tokens for a organisation
+	err = model.DB.Model(&model.OrganisationToken{}).Preload("Organisation").Where(&model.OrganisationToken{
+		Token: tokenBody.Token, OrganisationID: uint(id),
+	}).First(&orgToken).Error
+
+	if err != nil {
+		loggerx.Error(err)
+		if err == gorm.ErrRecordNotFound {
+			renderx.JSON(w, http.StatusUnauthorized, map[string]interface{}{"valid": false})
+			return
+		}
+		errorx.Render(w, errorx.Parser(errorx.InternalServerError()))
+		return
+	}
+
+	renderx.JSON(w, http.StatusOK, map[string]interface{}{"valid": true})
+}