@Immutable public final class TokenRevocationRequest extends AbstractOptionallyIdentifiedRequest
Example token revocation request for a confidential client:
POST /revoke HTTP/1.1 Host: server.example.com Content-Type: application/x-www-form-urlencoded Authorization: Basic czZCaGRSa3F0MzpnWDFmQmF0M2JW token=45ghiukldjahdnhzdauz&token_type_hint=refresh_token
Example token revocation request for a public client:
POST /revoke HTTP/1.1 Host: server.example.com Content-Type: application/x-www-form-urlencoded token=45ghiukldjahdnhzdauz&token_type_hint=refresh_token&client_id=123456
Related specifications:
Constructor and Description |
---|
TokenRevocationRequest(URI uri,
ClientAuthentication clientAuth,
Token token)
Creates a new token revocation request for a confidential client.
|
TokenRevocationRequest(URI uri,
ClientID clientID,
Token token)
Creates a new token revocation request for a public client.
|
Modifier and Type | Method and Description |
---|---|
Token |
getToken()
Returns the token to revoke.
|
static TokenRevocationRequest |
parse(HTTPRequest httpRequest)
Parses a token revocation request from the specified HTTP request.
|
HTTPRequest |
toHTTPRequest()
Returns the matching HTTP request.
|
getClientID
getClientAuthentication
getEndpointURI
public TokenRevocationRequest(URI uri, ClientAuthentication clientAuth, Token token)
uri
- The URI of the token revocation endpoint. May be
null
if the toHTTPRequest()
method
will not be used.clientAuth
- The client authentication. Must not be
null
.token
- The access or refresh token to revoke. Must not be
null
.public TokenRevocationRequest(URI uri, ClientID clientID, Token token)
uri
- The URI of the token revocation endpoint. May be
null
if the toHTTPRequest()
method
will not be used.clientID
- The client ID. Must not be null
.token
- The access or refresh token to revoke. Must not be
null
.public Token getToken()
instanceof
operator can be
used to infer the token type. If it's neither
AccessToken
nor
RefreshToken
the
token_type_hint
has not been provided as part of the token
revocation request.public HTTPRequest toHTTPRequest()
Request
public static TokenRevocationRequest parse(HTTPRequest httpRequest) throws ParseException
httpRequest
- The HTTP request. Must not be null
.ParseException
- If the HTTP request couldn't be parsed to a
token revocation request.Copyright © 2016 Connect2id Ltd.. All rights reserved.