Revoke Token
Revoke the current user's token. After revocation, the token becomes invalid. Note: to avoid leaking sensitive information, the interface returns success uniformly when revoking tokens that are invalid, already revoked, or expired.
Request Description
http
POST https://{your_domain}/api/v1/oauth2/revokeRequest Headers
| Parameter | Name | Required | Example | Description |
|---|---|---|---|---|
| Authorization | Authentication info | Required | Basic UnFCMkhKd4OWWA== | Use client_id and client_secret for Base64 authentication. Format: base64(client_id:client_secret) |
| Content-Type | Data type | Required | application/x-www-form-urlencoded | Submit parameters using form data. |
Request Example
http
POST https://{your_domain}/api/v1/oauth2/revokeAuthorization: Basic UnFCMkhKdGt6bFU...aT0NObkk4NlNOWk9xWA==
Content-Type: application/x-www-form-urlencoded
token=MmVkMzYmMzODBkYjY3UV4nmxKh4z....&token_type_hint=access_token
Request Parameters
| Parameter | Name | Required | Example | Description |
|---|---|---|---|---|
| token | Token | Yes | ||
| token_type_hint | Optional | Defaults to access_token |
Response Example
Success Response Example
HTTP/1.1 200 OK
Error Response Example
HTTP 401 Unauthorized
json
{
"error": "invalid_client",
"error_description": "Bad client credentials"
}Response Parameters
If successful, an empty body is returned.