I asked a question in another topic(Difference Between Project-Specific and Admin-Generated Tokens in SonarCloud), but it seems that there are several ways to generate tokens in SonarQube Cloud.
What is the intended use of the tokens that can be found under MyAccount > Security > Generate Token and Administration > Analysis/Method on each project page?
This is just a guess, but I imagine that initially, tokens are created by the administrator, and when the tokens expire, the administrators of each project reset the tokens themselves.