class Doorkeeper::TokensController

def revoke

OAuth 2.0 Token Revocation - http://tools.ietf.org/html/rfc7009

def revoke
  # The authorization server, if applicable, first authenticates the client
  # and checks its ownership of the provided token.
  #
  # Doorkeeper does not use the token_type_hint logic described in the
  # RFC 7009 due to the refresh token implementation that is a field in
  # the access token model.
  if authorized?
    revoke_token
    render json: {}, status: 200
  else
    render json: revocation_error_response, status: :forbidden
  end
end

Instance Methods

# after_successful_authorization
# authorize_response
# authorized?
# before_successful_authorization
# create
# introspect
# revocation_error_response
# revoke
# revoke_token
# strategy
# token

Modules

Classes

class Doorkeeper::TokensController

def revoke

Instance Methods