Global Token Revocation

Endpoint

POST /oauth/global-token-revocation/connection/{connection_name} Use this endpoint with the Okta Workforce Identity Cloud Universal Logout to log users out of your applications. A request to this endpoint revokes session cookies and refresh tokens, but not access tokens. To learn more, read Universal Logout. The request must be authenticated before revoking user sessions. Review Endpoint Authentication.

Path Parameters

connection_name

string

required

The name of the connection for which you want to revoke the user’s session.

Body Parameters

subject

object

Show properties

format

string

required

iss

string

required

The issuer URL (typically your authorization server’s URL).

sub

string

required

The subject identifier (typically the user identifier).

Response Messages

Status	Description
200	Successfully revoked session cookies and refresh tokens.
400	Bad request, possibly due to an invalid `subject` format or missing authentication.
401	Unauthorized, authentication failed.
500	Internal Server Error.

​Endpoint

​Path Parameters

​Body Parameters

​Response Messages

Endpoint

Path Parameters

Body Parameters

Response Messages