Protobox

Revoke Token

Revoke the current access token and optionally the refresh token.

Use this endpoint to log out a user or invalidate tokens for security purposes. After revoking, the tokens will no longer be valid for API access.

Request
curl -X POST "https://platform.protobox.ai/api/v1/auth/revoke" \
  -H "Authorization: Bearer <access_token>" \
  -H "Content-Type: application/json" \
  -d '{
    "revoke_refresh_token": true
  }'
const response = await fetch('https://platform.protobox.ai/api/v1/auth/revoke', {
  method: 'POST',
  headers: {
    'Authorization': 'Bearer ' + accessToken,
    'Content-Type': 'application/json',
  },
  body: JSON.stringify({
    revoke_refresh_token: true
  })
});

// Clear tokens from storage
localStorage.removeItem('access_token');
localStorage.removeItem('refresh_token');
import requests

response = requests.post(
    'https://platform.protobox.ai/api/v1/auth/revoke',
    headers={'Authorization': f'Bearer {access_token}'},
    json={'revoke_refresh_token': True}
)

# Clear stored tokens
access_token = None
refresh_token = None
Response
{
  "success": true,
  "data": {
    "message": "Tokens revoked successfully",
    "revoked": {
      "access_token": true,
      "refresh_token": true
    }
  }
}
{
  "success": false,
  "error": {
    "code": "TOKEN_ALREADY_REVOKED",
    "message": "Token has already been revoked"
  }
}