Revoke token

OAuth 2.0 token revocation endpoint (RFC 7009).

Use this endpoint to revoke an access token or refresh token. After revocation, the token will no longer be valid for authentication or authorization.

Supported Content Types:

application/x-www-form-urlencoded (standard OAuth 2.0)
application/json

Response:

Returns 200 OK with empty body on successful revocation
The server responds with 200 OK even if the token was already invalid or expired

Request Body

Token revocation request

client_idstring

Client identifier issued during registration

Example"your_client_id"

client_secretstring

Client secret issued during registration

Example"your_client_secret"

grant_typestring

OAuth 2.0 grant type (must be 'revoke')

Value in"revoke"

Example"revoke"

tokenstring

The token to revoke (access token or refresh token)

Example"eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9..."

Response Body

text/plain

application/json

curl -X POST "https://breb-participant.cert.monoban.co/api/v1/oauth/revoke" \
  -H "Content-Type: application/json" \
  -d '{
    "client_id": "your_client_id",
    "client_secret": "your_client_secret",
    "grant_type": "revoke",
    "token": "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9..."
  }'

curl -X POST "https://breb-participant.cert.monoban.co/api/v1/oauth/revoke" \  -H "Content-Type: application/json" \  -d '{    "client_id": "your_client_id",    "client_secret": "your_client_secret",    "grant_type": "revoke",    "token": "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9..."  }'

Empty

{
  "error": "invalid_client",
  "error_description": "Client authentication failed"
}

{
  "error": "invalid_client",
  "error_description": "Client authentication failed"
}

Revoke token

Request Body

Response Body

200text/plain

400application/json

401application/json

text/plain

application/json

application/json