answering my own question: here is a statement from an auth0 person confirming that login tokens are impossible to revoke:
Is there any way to expire or revoke bearer access token on logout event of dot net core application
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| Does Auth0 prevent the user to be logged in at two different places? | 9 | 5818 | May 10, 2019 | |
| Having Trouble on Remove Auth0 Session When Logout From Front End | 2 | 5354 | September 26, 2019 | |
| Expire access token when Logout | 2 | 8080 | July 19, 2024 | |
| Revoking Access Tokens | 3 | 3959 | April 2, 2020 | |
| How to destroy JWT token when signout | 1 | 11394 | December 5, 2017 |