Offboarding

The customer should be able to revoke permission given to the client by either removing the device in the partner app or by removing the permission in the HanchuESS platform.

To enable partner to revoke permissions, the OEM should provide an OAuth2.0 endpoint to allow the tokens to be revoked:

Device revoke

post

Actually, user always have authority to revoke their grant anytime, thenyou could invoke this endpoint to meet their demands.

Body

tokenstringRequired

Access token

Example: eyJhbGciOiJIUz******InR5cCI6IkpXVCJ9

token_type_hintstringRequired

Token type

Example: access_token

Responses

204

Operation was successful

No content

400

Bad Request

application/json

default

Unexpected error

application/json

post

/oauth/revoke

POST /portal/oauth/revoke HTTP/1.1
Host: idaas-sandbox.hanchuess.com
Content-Type: application/json
Accept: */*
Content-Length: 81

{
  "token": "eyJhbGciOiJIUz******InR5cCI6IkpXVCJ9",
  "token_type_hint": "access_token"
}

No content

PreviousOnboarding NextEvents

Last updated 6 months ago

hashtagDevice revoke

Device revoke