| title | Revocation Endpoint | |||
|---|---|---|---|---|
| description | Learn about the revocation endpoint that allows invalidating access and refresh tokens according to RFC 7009 specification. | |||
| date | 2020-09-10 08:22:12 +0200 | |||
| sidebar |
|
|||
| redirect_from |
|
This endpoint allows revoking access tokens (reference tokens only) and refresh token. It implements the token revocation specification (RFC 7009).
-
tokenthe token to revoke (required)
-
token_type_hinteither
access_tokenorrefresh_token(optional)
POST /connect/revocation HTTP/1.1
Host: server.example.com
Content-Type: application/x-www-form-urlencoded
Authorization: Basic czZCaGRSa3F0MzpnWDFmQmF0M2JW
token=...&token_type_hint=refresh_token
You can use the Duende IdentityModel client library to programmatically interact with the protocol endpoint from .NET code.
using IdentityModel.Client;
var client = new HttpClient();
var result = await client.RevokeTokenAsync(new TokenRevocationRequest
{
Address = "https://demo.duendesoftware.com/connect/revocation",
ClientId = "client",
ClientSecret = "secret",
Token = token
});