Xeonr Developer Docs
API SpecificationAuthorisations

Revoke All Authorisations

POST
/xeonr.auth.api.v1.AuthorisationsService/RevokeAllAuthorisations

Revokes all OAuth authorisations for the current user, performing a global logout. This will send backchannel logout notifications to all relying parties with active sessions.

Required scopes: oauth:client-authorisations:revoke

Authorization

AuthorizationBearer <token>

JWT access token obtained via OAuth2 flow or service account

In: header

Header Parameters

Connect-Protocol-Version*number

Define the version of the Connect protocol

Value in1
Connect-Timeout-Ms?number

Define the timeout, in ms

Request Body

application/json

[key: string]?never

Response Body

application/json

application/json

curl -X POST "https://auth.xeonr.io/xeonr.auth.api.v1.AuthorisationsService/RevokeAllAuthorisations" \  -H "Connect-Protocol-Version: 1" \  -H "Content-Type: application/json" \  -d '{}'
{
  "revokedCount": "5"
}
{
  "code": "not_found",
  "message": "string",
  "details": [
    {
      "type": "string",
      "value": "string",
      "debug": {}
    }
  ]
}

List Authorisations POST

Returns a list of all OAuth applications that the current user has authorised, including the scopes granted and last used timestamps. **Required scopes:** `oauth:client-authorisations:read`

Revoke Authorisation POST

Revokes a specific OAuth authorisation, preventing the application from accessing the user's data. This will invalidate all tokens issued to the application. **Required scopes:** `oauth:client-authorisations:revoke`