Skip to content

Implement Token Revocation Endpoint #83

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
jgrandja opened this issue May 28, 2020 · 2 comments
Closed

Implement Token Revocation Endpoint #83

jgrandja opened this issue May 28, 2020 · 2 comments
Assignees
@jgrandja
Labels
type: enhancement A general enhancement
Milestone
0.0.3

Comments

@jgrandja
Copy link
Collaborator

jgrandja commented May 28, 2020
edited
Loading

An authorization server should provide an endpoint that allows revoking an access token or refresh token.

The OAuth2TokenRevocationEndpointFilter should be implemented as a Filter.

Implementation Requirements

  • the Filter should process POST requests for the (default) path /oauth2/revoke
  • The client must be authenticated Implement Client Authentication #39 before the Revocation Request can be accepted
  • the implementation must support the revocation of access tokens and refresh tokens
  • the Filter should use the OAuth2AuthorizationService to invalidate the token
  • javadoc class and public methods
  • Unit tests

Specification References

OAuth 2.0 Token Revocation
@jgrandja jgrandja added type: enhancement A general enhancement status: on-hold We can't start working on this issue yet labels May 28, 2020
@jgrandja jgrandja added this to the 0.0.1 milestone May 28, 2020
@rorybyrne
Copy link

I like to have a go at this one @jgrandja if that's possible.

@jgrandja jgrandja removed the status: on-hold We can't start working on this issue yet label May 28, 2020
@jgrandja
Copy link
Collaborator Author

Thanks for your interest @synek. This has already been assigned to an internal team member. Please keep an eye out for other issues coming up.

babuv2 added a commit to babuv2/spring-authorization-server that referenced this issue Jun 5, 2020
@babuv2
Implement Token Revocation Endpoint
f3f7861 
Fixes spring-projectsgh-83
babuv2 added a commit to babuv2/spring-authorization-server that referenced this issue Jun 5, 2020
@babuv2
Implement Token Revocation Endpoint
4836bdb 
Fixes spring-projectsgh-83
@babuv2 babuv2 mentioned this issue Jun 5, 2020
Closed
babuv2 added a commit to babuv2/spring-authorization-server that referenced this issue Jun 11, 2020
@babuv2
Implement Token Revocation Endpoint
686115c 
Fixes spring-projectsgh-83
babuv2 added a commit to babuv2/spring-authorization-server that referenced this issue Jun 23, 2020
@babuv2
Implement Token Revocation Endpoint
dcd399e 
Fixes spring-projectsgh-83
@jgrandja jgrandja modified the milestones: 0.0.1, 0.0.2 Aug 19, 2020
@jgrandja jgrandja modified the milestones: 0.0.2, 0.0.3 Sep 2, 2020
@jgrandja jgrandja mentioned this issue Oct 15, 2020
Closed
This was referenced Nov 3, 2020
Closed
Closed
jgrandja added a commit that referenced this issue Nov 4, 2020
@jgrandja
Use OAuth2ParameterNames.TOKEN
ebcdf79 
Issue gh-83
jgrandja added a commit that referenced this issue Nov 4, 2020
@jgrandja
Use OAuth2ErrorCodes.UNSUPPORTED_TOKEN_TYPE
cb09aef 
Issue gh-83
doba16 pushed a commit to doba16/spring-authorization-server that referenced this issue Apr 21, 2023
@babuv2 @jgrandja
Implement Token Revocation Endpoint
599162c 
Closes spring-projectsgh-83
doba16 pushed a commit to doba16/spring-authorization-server that referenced this issue Apr 21, 2023
@jgrandja
Use OAuth2ParameterNames.TOKEN
b513f9a 
Issue spring-projectsgh-83
doba16 pushed a commit to doba16/spring-authorization-server that referenced this issue Apr 21, 2023
@jgrandja
Use OAuth2ErrorCodes.UNSUPPORTED_TOKEN_TYPE
7f1e997 
Issue spring-projectsgh-83
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jgrandja jgrandja

Labels
type: enhancement A general enhancement
Projects
None yet
Milestone
0.0.3
Development

Successfully merging a pull request may close this issue.

Implement Token Revocation Endpoint babuv2/spring-authorization-server
3 participants
@rorybyrne @jgrandja @spring-contributor