Skip to content

Invalidate tokens API #34556

New issue
New issue
Closed
Closed
Invalidate tokens API#34556
Assignees
jkakavas
Labels
:Security/AuthenticationLogging in, Usernames/passwords, Realms (Native/LDAP/AD/SAML/PKI/etc)>featurev7.0.0-beta1
@jkakavas

Description

@jkakavas
jkakavas
opened on Oct 17, 2018

Today the only way for invalidating an authentication token is to invoke the delete token API passing in the string representation of the token that should be invalidated.

We should offer more granular ways for users to perform token invalidation in order to support use cases such as user expiration or protection from user credentials exposure.
For example, we should be allowing users to:

  • Invalidate all tokens for a specific realm of given type
  • Invalidate all tokens for a specific user principal across all realms
  • Invalidate all tokens created before or after a specific instant (?)
  • Invalidate all tokens

Metadata

Metadata

Assignees

Labels

:Security/AuthenticationLogging in, Usernames/passwords, Realms (Native/LDAP/AD/SAML/PKI/etc)>featurev7.0.0-beta1

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions