Xeonr Developer Docs
API SpecificationAuthorisations

Revoke Authorisation

POST
/xeonr.auth.api.v1.AuthorisationsService/RevokeAuthorisation

Revokes a specific OAuth authorisation, preventing the application from accessing the user's data. This will invalidate all tokens issued to the application.

Required scopes: oauth:client-authorisations:revoke

Authorization

AuthorizationBearer <token>

JWT access token obtained via OAuth2 flow or service account

In: header

Header Parameters

Connect-Protocol-Version*number

Define the version of the Connect protocol

Value in1
Connect-Timeout-Ms?number

Define the timeout, in ms

Request Body

application/json

authorisationId?string

Unique identifier for the authorisation to be revoked

[key: string]?never

Response Body

application/json

application/json

curl -X POST "https://auth.xeonr.io/xeonr.auth.api.v1.AuthorisationsService/RevokeAuthorisation" \  -H "Connect-Protocol-Version: 1" \  -H "Content-Type: application/json" \  -d '{}'
{}
{
  "code": "not_found",
  "message": "string",
  "details": [
    {
      "type": "string",
      "value": "string",
      "debug": {}
    }
  ]
}

Revoke All Authorisations POST

Revokes all OAuth authorisations for the current user, performing a global logout. This will send backchannel logout notifications to all relying parties with active sessions. **Required scopes:** `oauth:client-authorisations:revoke`

Authentication

Authentication