You're viewing documentation for release 6. Looking for a different release?

Manage JWT token revocation rules

In 10Duke SysAdmin on the JWT token revocations page, you can create token revocation rules for JWT access tokens.

What is token revocation?

Token revocation is the process of immediately invalidating an issued JWT token before its scheduled expiration date. By revoking JWT tokens that are no longer needed or have been compromised, you can prevent unauthorized access to your application. For example, when a user logs out of your application or changes their credentials, you can revoke the associated token to ensure continued security. When a token is revoked, the system rejects any API requests using that token.

View JWT token revocation rules

  1. In SysAdmin in the left sidebar, go to IDENTITY > Token revocations.

    The JWT token revocations table opens.

  2. View the details of created JWT token revocation rules in the table.

See more

On this page