Revoke token

Revoking a token immediately invalidates it — any subsequent request using that token will be rejected. Call this endpoint when a user logs out or when you need to terminate a specific session (e.g., after a password change or suspicious activity).

note

Once a token is revoked, it cannot be un-revoked. The user must authenticate again to obtain a new token.

METHOD : POST

ENDPOINT: /simple-jwt-login/v1/auth/revoke

URL Example : https://{{yoursite}}/?rest_route=/simple-jwt-login/v1/auth/revoke&JWT={{YOUR_JWT}}

PARAMETERS:

Parameter	Type	Description
JWT	`required` `string`	Your JWT
AUTH_CODE	`optional` `string`	Auth Code from the "Auth codes" section. Required only if the "Authentication Requires Auth Code" option is enabled.

Request

{
  "JWT" : "YOUR_JWT_HERE",
  "AUTH_CODE": "MySecretAuthCode"
}

Responses

200

{
  "success": true,
  "message": "Token was revoked"
}

400

{
  "success": false,
  "error" : "Error message"
}

Examples

SHELL

curl -X POST https://simplejwtlogin.com/?rest_route=/simple-jwt-login/v1/auth/revoke \
  -H "Content-type: application/json" \ 
  -d '{"JWT":"YOUR_JWT"}'

PHP

$simpleJwtLogin = new \SimpleJwtLoginClient\SimpleJwtLoginClient(
    'https://simplejwtlogin.com',
    '/simple-jwt-login/v1'
); 
$result = $simpleJwtLogin->revokeToken('Your JWT here', 'AUTH CODE');

Request​

Responses​

200​

400​

Examples​

SHELL​

PHP​

Screenshot​

Request

Responses

200

400

Examples

SHELL

PHP

Screenshot