Revoke Consenst Session for login_session_id #2461
-
|
Hey! Currently it is possible to revoke all consent sessions and thus invalidating the tokens for a subject. So imagine a subject (e.g. the user) has 4 login sessions on 4 devices but only access tokens for one login session on one device should be invalidated? Is there a solution? |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 1 reply
-
|
I dont want to come across as preaching but: If you just want to invalidate the (Ory Hydra) session (i.e. log out the user) just use the normal flow.. If you want to invalidate the session in your app, you need to do that there. |
Beta Was this translation helpful? Give feedback.
-
|
Hey @pommelinho, just checking in if your problem still persists. |
Beta Was this translation helpful? Give feedback.
I dont want to come across as preaching but:
Access tokens are not sessions!
If you just want to invalidate the (Ory Hydra) session (i.e. log out the user) just use the normal flow..
If you want to invalidate the session in your app, you need to do that there.