How to check for token revocation?
james-callahan opened this issue · 0 comments
james-callahan commented
I'm not sure if it already does, so this is either a feature request or a documentation request:
Will tokens be checked to see if they have been revoked?
e.g. keycloak seems to support checking if a token is revoked via OAuth 2.0 Token Introspection https://www.keycloak.org/docs/latest/securing_apps/#_token_introspection_endpoint