Results 1 to 2 of 2

Thread: OAuth2.0 - Log out

Hybrid View

  1. Jan 2nd, 2013, 10:32 AM #1
    davidselvaraj
    davidselvaraj is offline Junior Member
    Join Date
    Mar 2011
    Posts
    7

    Default OAuth2.0 - Log out

    Hi,
    Is there some functionality in the OAuth 2.0 provider impl, that will take care of log out? In other words, is there any uri like oauth/logout?access_toke=xxxxx, that will invalidate the token?

    Please let me know.

    Thanks
    Reply With Quote Reply With Quote
  2. Jan 7th, 2013, 08:45 AM #2
    Dave Syer
    Dave Syer is offline Senior Member
    Join Date
    Jun 2005
    Posts
    4,232

    Default

    It's not part of the spec so we don't include endpoints for that in the library itself. The sparklr2 sample has an AdminController with a token revocation endpoint @RequestMapping(value = "/oauth/users/{user}/tokens/{token}", method = RequestMethod.DELETE). That's not really logout though in the normal sense of the word because an access token is not really a session token.
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules