answering my own question: here is a statement from an auth0 person confirming that login tokens are impossible to revoke:
Is there any way to expire or revoke bearer access token on logout event of dot net core application
1 Like