Documentation
Revoke
Invalidate an access or refresh token.
POST/api/auth/oauth2/revoke
Purpose
Revokes a previously issued token so it can no longer be used. Call this during logout.
Request
| Field | Description |
|---|---|
token | Access or refresh token value |
token_type_hint | Optional: access_token or refresh_token |
client_id / client_secret | Client authentication |
Response
Successful revocation returns an empty success body (HTTP 200).
Example
revoke.sh
curl -X POST "https://auth.rdnt.live/api/auth/oauth2/revoke" \
-H "Content-Type: application/x-www-form-urlencoded" \
-d "token=REFRESH_OR_ACCESS_TOKEN" \
-d "token_type_hint=refresh_token" \
-d "client_id=YOUR_CLIENT_ID" \
-d "client_secret=YOUR_CLIENT_SECRET"