Hi Team,
When I generate 2 access token using some credentials
and try to use the 1st token then it is valid and it gives me a response.
I want my old token to be expired when a new token is generated.
how can I do that?
Hi Prajwal,
What version of Jmix are you using?
To revoke the old token, you need to do the following steps:
- Create an
oauth/revokeendpoint. - Save the token each time it is generated
- If you have an old token (generated earlier), send a request to the
/oauth/revokeendpoint to revoke the old access token.
Ilya
Hi Ilia,
I am using JMIX 1.5.5
Can you share any examples of what you have suggested?
a jmix documentation will also work,
The good starting point is Jmix docs.
Also I prepared example project with simple generate/revoke token logic.
TokenRevokeExample.zip (162.9 KB)
The “Revoke token example” screen contains three buttons:
- Shows all current tokens.
- Generate a new token.
- Generate a new token and revokes all previous tokens.
Ilya