GuidesAPI ReferenceGitHub
Guides
Community ForumsTwitter

Revoke a Token

After you have completed authorization using one of the OAuth2 flows, you can use the /oauth2/revoke endpoint to invalidate the access token or refresh token returned from the authorization endpoint (e.g. to prevent further access using that token).

Set the Content-type in the request to application/x-www-form-urlencoded and pass the access token via the token body parameter:

POST https://tenant.my.centrify.net/oauth2/revoke/myapplication HTTP/1.1
Authorization: Basic amFtZ...
Content-Type: application/x-www-form-urlencoded


token=eyJhbGsdaefwsd...

The response indicates 200 OK if the token was successfully revoked.

HTTP/1.1 200 OK

Try the API in Postman:
Try the API in Postman.
Click here for help with using our sample Postman collection.

Updated almost 5 years ago