Change theme
Help
Press space for more information.
Show links for this issue (Shortcut: i, l)
Copy issue ID
Previous Issue (Shortcut: k)
Next Issue (Shortcut: j)
Sign in to use full features.
Vote: I am impacted
Notification menu
Refresh (Shortcut: Shift+r)
Go home (Shortcut: u)
Pending code changes (auto-populated)
View issue level access limits(Press Alt + Right arrow for more information)
Request for new functionality
View staffing
Description
According to [1] for revoking OAuth token using API call, just need to know the token.Here no other authentication is required. For enhancing the security might need to have proper authentication as well as IAM permission for revoking access tokens.
[1]-
Problem you have encountered:
Using curl command/API call for revoking OAuth token, users need to place the token only rather any other authentication as well as IAM condition
What you expected to happen:
For enhancing security, need to have proper authentication process as well as IAM permission for revoking token.
Steps to reproduce:
[2]-
Other information (workarounds you have tried, documentation consulted, etc):
NA