Revoking an API Refresh Token
| • | Revoking Your Own Refresh Token Using the Flexera One User Interface —Shows how to revoke your own refresh token using the User Settings controls in Flexera One. |
| • | Revoking Your Own Refresh Token Using the Command Line—Provides instructions for revoking your own refresh tokens using Curl to interact with the Flexera One API at the command line. |
| • | Administration of Refresh Tokens Across All Users in an Organization—Provides an overview of users' refresh token administration. |
Revoking Your Own Refresh Token Using the Flexera One User Interface
This section describes how revoke a refresh token from within Flexera One.
To revoke a refresh token from within Flexera one:
| 1. | In a web browser, access either of the following URLs based on the server location of your account: |
| • | For accounts in North American, log in to app.flexera.com. |
| • | For accounts in Europe (EU), log in to app.flexera.eu. |
| • | For accounts in APAC, log in to app.flexera.au. |
| 2. | The Flexera One login screen appears. Log in to your account. |
| 3. | Click the profile icon in the top right corner of the page and then select User Settings. |
| 4. | On the left menu, click API Credentials. |
| 5. | A list of non-expired API refresh tokens that you generated are listed. Any of the three columns (ID, Created On, Expires On) can be filtered to help you find the ID of the refresh token that you want to revoke. |
Note:If no refresh tokens appear, this means that previous refresh tokens you have created have expired, or you did not create any refresh tokens using your current Flexera One account. Refresh tokens expire one year after their last use date. If you keep using a refresh token, the expiry date resets accordingly.
| 6. | Locate the ID of the refresh token you want to revoke and then click the delete button (trash can icon) at the far right if its row. A confirmation screen appears. Click Delete. |
Revoking Your Own Refresh Token Using the Command Line
This section shows how to revoke a refresh token using a command line.
Tip:To do the steps shown in this section, you must know the ID of the refresh token you are going to revoke. For help refer to Obtaining List of All Refresh Tokens Owned by Caller. You can also view a list of your refresh token IDs as shown in the previous section, Revoking Your Own Refresh Token Using the Flexera One User Interface .
To revoke a token, you can use the following command:
curl -s -X DELETE -H "Authorization: Bearer <your access token>" https://api.flexera.com/iam/v1/refresh-tokens/<refresh token 2 ID>
To revoke all API refresh tokens owned by the caller:
curl -s -X DELETE -H "Authorization: Bearer <your access token>" https://api.flexera.com/iam/v1/refresh-tokens
Note:Revoked refresh tokens will no longer appear in the refresh token API.
Administration of Refresh Tokens Across All Users in an Organization
Users with the Manage Organization role can filter Flexera One users that have a valid refresh token for their organization. They can also revoke the refresh token that belongs to users within their organization. See Refresh Token, on developer.flexera.com, for more API information on how to index and revoke users' refresh tokens.
Note:Refresh tokens in Flexera One are not organization-specific. Thus, revoking refresh tokens of users who have access to more than one organization on Flexera One is not supported. If needed, such users can be deleted in Flexera One by administrators via the user management UI to ensure all accesses are properly restricted across the organization.