发表新帖
发表新帖

Server side removal of Oauth token

前端 未结
关注
1 917
遇见更好的自我
遇见更好的自我 2020-12-17 07:31

If a user wants to remove him/herself from our service, we delete all of their data from our database, including Oauth tokens. The Oauth tokens we have are secure and persi

相关标签:
1条回答
  • 孤独总比滥情好
    2020-12-17 08:15

    Yes, you can revoke tokens programmatically as if the user revoked access in their accounts settings page.

    For AuthSub and OAuth 1.0, use the AuthSubRevoke token endpoint by making an OAuth-signed request to:

    https://www.google.com/accounts/AuthSubRevokeToken

    For OAuth 2.0, use the revocation endpoint like:

    https://accounts.google.com/o/oauth2/revoke?token={refresh_token}
    0 讨论(0)
 看不清?
提交回复
热议问题