Results 1 to 6 of 6

Thread: OAuth refresh token revoke

Threaded View

  1. #1
    Join Date
    Dec 2007

    OAuth refresh token revoke


    does anybody knows how to revoke already issued access or refresh OAuth token in NAM 4.3.x?
    Looked through administration guide and REST API guide but couldn't find anything. And clearing user's session does not revoke access or refresh token, issued for that user.

    EDIT: just found out RFC OAuth 2.0 Token Revocation https://tools.ietf.org/html/rfc7009:
    Implementations MUST support the revocation of refresh tokens and SHOULD support the revocation of access tokens (see Implementation Note).

    So somehow there should be way to revoke at least refresh token.

    Thanks Sebastijan
    Last edited by sebastijan; 02-May-2017 at 03:02 PM.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts