Skip to main content
DELETE
http://localhost:8001
/
revocation
/
{jti}
curl -X DELETE http://localhost:8001/revocation/8a3b9c4d-e5f6-7890-abcd-1234567890ab \
  -H "Content-Type: application/json" \
  -d '{
    "token_type": "bearer",
    "customer_id": "550e8400-e29b-41d4-a716-446655440000",
    "reason": "Compromised token"
  }'

{
  "revoked": true,
  "jti": "8a3b9c4d-e5f6-7890-abcd-1234567890ab"
}
The auth service is deployed on a private network. All endpoints except /health are internal management-plane operations.

Path Parameters

jti
string
required
JTI (JWT ID) of the token to revoke.

Request Body

token_type
string
required
Type of the token being revoked. Accepted values: app, bearer, agent, subagent, session, override.
customer_id
string
required
UUID of the customer that owns the token.
reason
string
Reason for revocation (e.g., Compromised token, Employee offboarded). Stored in the revocation log.

Response

revoked
boolean
Whether the token was successfully revoked.
jti
string
The JTI of the revoked token.
curl -X DELETE http://localhost:8001/revocation/8a3b9c4d-e5f6-7890-abcd-1234567890ab \
  -H "Content-Type: application/json" \
  -d '{
    "token_type": "bearer",
    "customer_id": "550e8400-e29b-41d4-a716-446655440000",
    "reason": "Compromised token"
  }'

{
  "revoked": true,
  "jti": "8a3b9c4d-e5f6-7890-abcd-1234567890ab"
}