user14217
Reputation: 23
Aure AAD - API or SDK for Sign out from all devices feature
Is there an azure aad api that can be invoked to kill all refresh_tokens for a particular app? So that after an hour, new tokens will not be issued and devices under the app-id will signout automatically. Pls note the signout should delete refresh tokens for a particular appid, not all the tokens from the user.
Upvotes: 1
Views: 114
Answers (1)
Allen Wu
Reputation: 16458
No. There is no such an official API.
The only call which is exposed by Microsoft is revoke all refresh tokens issued to all applications for a user.
See Revoke-AzureADUserAllRefreshToken.
AAD Graph API: POST https://graph.windows.net/{tenant id}/me/invalidateAllRefreshTokens?api-version=1.6 HTTP/1.1
You can post your idea on Azure AD User Voice.
Upvotes: 1
Related Questions
- Azure AD B2C - Sign out a user from all sessions
- How to logout from all devices if authentication provider is Microsoft.Owin
- SignOut issue from Microsoft Active Directory SDK for Android
- Logout user from other devices
- Any Office 365 REST API to sign out user of office 365?
- How to sign out from Azure AD 2.0/MSAL in a desktop application?
- Azure Active Directory Post sign out URL
- Azure Active directory Logout
- Azure Web App logout from AAD Authentication
- Azure Active Directory Logout with ADAL library