Skip to content

Latest commit

 

History

History
295 lines (136 loc) · 2.41 KB

call-identity-authentication-revoke-token-endpoint-3501e42.md

File metadata and controls

295 lines (136 loc) · 2.41 KB

Call Identity Authentication Revoke Token Endpoint

The revoke token endpoint invalidates any access and refresh tokens issued to the client for the same end-user.

The token recation endpoint is implemented according to RFC 7009 OAuth 2.0 Token Revocation.

Request

URI:https://<tenant ID>.accounts.ondemand.com/oauth2/revoke

**HTTP Method:**POST

Request Headers

Header

Required

Values

Content-Type

Yes

application/x-www-form-urlencoded

Authentication

Yes

  • Basic Authentication -

    Client ID and a Secret to authenticate the client (relying party). For more information, see Configure Secrets for API Authentication.

    Note:

    The client ID and secret must be encoded using the "application/x-www-form-urlencoded" encoding algorithm.

  • POST

  • X.509 Certificate

  • Bearer <client_credential_token>)

Request Parameters

Parameter

Required

Data Type

Description

Parameter Type

token

Yes

string

Must contain the JWT or opaque token from the issuer.

Path

token_type_hint

No

string

 

Path

Request Example

token=0ab12345978c51ffe7c4e9a2b1158bb4

Response

Token is successfully revoked.

Response Status and Error Codes

Code

Reason

200 OK

Successful operation.

401 Unauthorized

The client is not authenticated.