+1, this is crucial for security, just in case any refresh_token is leaked, logging out is the quickest way to invalidate it/them!
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| Unable to revoke refresh tokens | 2 | 2172 | December 21, 2022 | |
| Limit number of active user sessions by revoking refresh tokens upon login? | 2 | 3540 | March 31, 2021 | |
| Invalid Refresh Token - Take 3 | 2 | 3625 | December 18, 2018 | |
| Logout user once refresh token expires, instead of making call to /authorize endpoint to get new access and refreshtoken | 3 | 4176 | February 16, 2023 | |
| Ability to revoke access token at logout | 6 | 5738 | September 8, 2021 |