How can an admin revoke the access token for a user?

Hello,

I’m using a single page application, there are multiple users (admin, and user for example) I have two questions:

  1. Does blacklisting the user revokes its access token immediately?
  2. How can the admin revokes the access token of an active user to make him log out immediately? What api to call I mean?

Thank you

Hello @shadymohammed,

Welcome to the Community! I may be wrong but I don’t believe you can revoke access tokens at all in Auth0, at least not yet (you can revoke a refresh token). The recommended best practice is to keep your token lifetime short. @nicolas_sabena suggests an approach here:

2 Likes

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.