Announcement Announcement Module
Collapse
No announcement yet.
OAuth2.0 - Log out Page Title Module
Move Remove Collapse
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • OAuth2.0 - Log out

    Hi,
    Is there some functionality in the OAuth 2.0 provider impl, that will take care of log out? In other words, is there any uri like oauth/logout?access_toke=xxxxx, that will invalidate the token?

    Please let me know.

    Thanks

  • #2
    It's not part of the spec so we don't include endpoints for that in the library itself. The sparklr2 sample has an AdminController with a token revocation endpoint @RequestMapping(value = "/oauth/users/{user}/tokens/{token}", method = RequestMethod.DELETE). That's not really logout though in the normal sense of the word because an access token is not really a session token.

    Comment

    Working...
    X