Ask Moov Beta
Generative AI is experimental and can make mistakes.
Guides Use cases
SDKs & UIs
API Changelog
  1. API reference
  2. Authentication
  3. Access tokens

Revoke an access token

Allows clients to notify the authorization server that a previously obtained refresh or access token is no longer needed
POST
/oauth2/revoke
204 400 429
Successful empty response for unauthorized or any other returned http status code.
Failed to revoke token
Request was refused due to rate limiting.

Response headers

X-Retry-In

string <duration>
How long (in milliseconds) to wait until able to retry the request.

Body

application/x-www-form-urlencoded
Allows clients to notify the authorization server that a previously obtained refresh or access token is no longer needed.

token

string<byte> <=4096 characters required
String passed to the authorization server to gain access to the system.

client_id

string<byte>
If not specified in Authorization: Basic it can be specified here

client_secret

string<byte>
If not specified in Authorization: Basic it can be specified here

token_type_hint

string<enum>
A hint about the type of the token submitted for revocation
Possible values: access_token, refresh_token