This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

revoke access token in proxy

Posted on 11-18-2020 09:57 AM
Not applicable
Reply posted on --/--/---- --:-- AM

I have the requirement to revoke the access token. I did use the invalidate policy. I see one abnormal behavior. The token is getting revoked after almost 3-5mins. Till then the token is working successfully and showing status approved. I am using apigee onprem 4.19.05.

Can anyone help me resolve this? Thanks...

Solved Solved
0 3 703
Topic Labels
Jump to Solution
0 Likes
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
Not applicable
Reply posted on --/--/---- --:-- AM

I got one work around.

Maybe the management api call for token information is getting bad data. That's why it takes up to 35mins to reflect revoked in the token information.

I added one verify oauth policy. After the token revoked using invalidate policy if I hit the verify OAuth token policy it immediately fails. That means the policy behaves as expected. So, I customized the error.

I conclude here is if the policy invalidates a token, then the immediate token validation policy will fail. But if I will do a management api call of the token then I may get revoked status after a notable delay.

View solution in original post

Jump to Solution
0 Likes
3 REPLIES 3
Top Solution Authors
View all