There have been a couple of requests from users related to the current session's tokens having to be revoked, for example, when the user logs out, I believe Apple requires it in some contexts, and it may be required in other deployments.
Right now, users are on their own on how to do it, for simple cases, an HTTP client form call might do, but it can be messy and should be avoidable.
CC @sschellh @FroMage
Implementation ideas
Add OidcProviderClient#revokeToken, make OidcProviderClient a CDI bean
quarkus-bot[bot]
commented
3 days ago
Description
There have been a couple of requests from users related to the current session's tokens having to be revoked, for example, when the user logs out, I believe Apple requires it in some contexts, and it may be required in other deployments.
Right now, users are on their own on how to do it, for simple cases, an HTTP client form call might do, but it can be messy and should be avoidable.
CC @sschellh @FroMage
Implementation ideas
Add
OidcProviderClient#revokeToken, makeOidcProviderClienta CDI bean