Page Comparison

Revokes an access token previously obtained. This method results in the revocation of an access token by a party such that it cannot be used by the requesting party to gain access to a service.

...

For information about the parameters that are common to trust framework’s API’s see Generic API Requirements.

Excerpt

name	post token revoke 2

Panel

panelIconId	2705
panelIcon	:white_check_mark:
panelIconText	✅
bgColor	#FFF0B3

DSGO.Basis: Parties MUST validate that a POST request to a /token/revoke endpoint contains the parameters as described in the table below

Panel

panelIconId	2705
panelIcon	:white_check_mark:
panelIconText	✅
bgColor	#FFF0B3

DSGO.Basis: Parties MUST validate the client credentials in the client_assertion received in a POST to a /token/revoke endpoint

Parameters		Description
`grant_type`	Required	as the OAuth 2.0 grant type. MUST be equal to `client_credentials`.
`client_id`	Required	as the OAuth 2.0 JWT bearer profile, specified in RFC7523. MUST contain a valid Organisation ID of the data service consumer, containing an EORI or KvK number. Used in DSGO for client identification.
`client_assertion_type`	Required	as the OAuth 2.0 JWT bearer profile, specified in RFC7523. MUST be equal to `urn:ietf:params:oauth:client-assertion-type:jwt-bearer`.
`client_assertion`	Required	as the OAuth 2.0 JWT bearer profile, specified in RFC7523. MUST contain a signed DSGO Authentication JWT. Used in DSGO for authentication of the client identification.
`token`	Required	as the OAuth 2.0 access token. MUST be equal to access token that the client wants revoked as specified in RFC7009

...

For information about the parameters that are common to trust framework’s API’s see Generic API Requirements.

200 OK

When the access token is successfully revoked, or an invalid token is submitted, the data service provider should send an OK result.

...

Versions Compared

Old Version 5

New Version Current

Key

200 OK