diff --git a/Octokit.Tests/Clients/AuthorizationsClientTests.cs b/Octokit.Tests/Clients/AuthorizationsClientTests.cs
index 019e7883..6e3b85ff 100644
--- a/Octokit.Tests/Clients/AuthorizationsClientTests.cs
+++ b/Octokit.Tests/Clients/AuthorizationsClientTests.cs
@@ -159,7 +159,7 @@ namespace Octokit.Tests.Clients
                     "secret",
                     Arg.Any<NewAuthorization>(),
                     "two-factor-code")
-                    .Returns(Task.Factory.StartNew(() => new ApplicationAuthorization { Token = "xyz" }));
+                    .Returns(Task.Factory.StartNew(() => new ApplicationAuthorization("xyz")));
 
                 var result = await client.GetOrCreateApplicationAuthentication("clientId",
                     "secret",
@@ -191,7 +191,7 @@ namespace Octokit.Tests.Clients
                     "secret",
                     Arg.Any<NewAuthorization>(),
                     "two-factor-code")
-                    .Returns(Task.Factory.StartNew(() => new ApplicationAuthorization { Token = "OAUTHSECRET" }));
+                    .Returns(Task.Factory.StartNew(() => new ApplicationAuthorization("OAUTHSECRET")));
 
                 var result = await client.GetOrCreateApplicationAuthentication("clientId",
                     "secret",
diff --git a/Octokit.Tests/Reactive/AuthorizationExtensionsTests.cs b/Octokit.Tests/Reactive/AuthorizationExtensionsTests.cs
index 1fcf2a9a..1b11b791 100644
--- a/Octokit.Tests/Reactive/AuthorizationExtensionsTests.cs
+++ b/Octokit.Tests/Reactive/AuthorizationExtensionsTests.cs
@@ -16,7 +16,7 @@ namespace Octokit.Tests.Reactive
             {
                 var firstResponse = new TwoFactorRequiredException(TwoFactorType.AuthenticatorApp);
                 var twoFactorChallengeResult = new TwoFactorChallengeResult("two-factor-code");
-                var secondResponse = new ApplicationAuthorization { Token = "OAUTHSECRET" };
+                var secondResponse = new ApplicationAuthorization("OAUTHSECRET");
 
                 var client = Substitute.For<IObservableAuthorizationsClient>();
                 client.GetOrCreateApplicationAuthentication(Args.String, Args.String, Args.NewAuthorization)
@@ -51,7 +51,7 @@ namespace Octokit.Tests.Reactive
                     TwoFactorChallengeResult.RequestResendCode,
                     new TwoFactorChallengeResult("two-factor-code")
                 });
-                var secondResponse = new ApplicationAuthorization { Token = "OAUTHSECRET" };
+                var secondResponse = new ApplicationAuthorization("OAUTHSECRET");
 
                 var client = Substitute.For<IObservableAuthorizationsClient>();
                 client.GetOrCreateApplicationAuthentication(Args.String, Args.String, Args.NewAuthorization)
diff --git a/Octokit/Models/Response/ApplicationAuthorization.cs b/Octokit/Models/Response/ApplicationAuthorization.cs
index 07db030a..ea4ffc6b 100644
--- a/Octokit/Models/Response/ApplicationAuthorization.cs
+++ b/Octokit/Models/Response/ApplicationAuthorization.cs
@@ -10,6 +10,11 @@ namespace Octokit
     [DebuggerDisplay("{DebuggerDisplay,nq}")]
     public class ApplicationAuthorization : Authorization
     {
+        public ApplicationAuthorization(string token)
+        {
+            Token = token;
+        }
+
         /// <summary>
         /// The oauth token (be careful with these, they are like passwords!).
         /// </summary>
@@ -18,6 +23,6 @@ namespace Octokit
         /// the authorization is created. All subsequent API calls
         /// (for example, 'get' for an authorization) will return `null`
         /// </remarks>
-        public string Token { get; set; }
+        public string Token { get; private set; }
     }
 }
\ No newline at end of file