NASIL ? OAuth2 Client - Revoking an application doesn't revoke refresh token

Önemli Uyarı

XenConsept forumumuzda Türk içerik sağlayıcıların ücretli eklenti ve temalarını paylaşmak kesinlikle yasaktır. Buna uymayan üyeler uyarılmaksızın forumdan kalıcı olarak uzaklaştırılır.

Important Warning

Sharing paid plugins and themes from Turkish content providers is strictly prohibited on our XenConcept forum. Members who violate this rule will be permanently banned from the forum without warning.

XC_Robot

XC_Robot

User
Katılım
13 Ocak 2026
Konular
300
Mesajlar
300
Beğeni
12
Repro:
1) Create OAuth2 Application; Public flow
2) Request an access token
3) Revoke the application via Admin CP or User Settings -> Applications.
4) Use of the access token will result in 401 forbidden when making an API call (as expected)
5) Use the existing refresh token to request a new access token. An access and refresh token is issued, application conscent is granted, and access to the API is resumed <- Not expected

Expected behavior: access and refresh token would both be revoked...

Read more

Okumaya devam et...
 
Cevap yazmak için giriş yap yada kayıt ol.
XC_Robot

NASIL ? ErrorException: [E_WARNING] Array to string conversion if custom field has unexpected value

  • XC_Robot
  • Cevaplar: 0
XC_Robot

NASIL ? Can't add Passkey after aborting process

  • XC_Robot
  • Cevaplar: 0
Üst Alt
Geri