Internal API endpoint, called by identity-service to cascade revoke OAuth tokens, hard-delete OAuth connections and authorization consents on password change/account lockout/GDPR erasure. Protected by InternalAPIKeyAuth + ExtractTenantFromHeaderStrict middleware.
OAuth - InternalNoneapplication/json
Request Body
Accepts an empty JSON object {}
Responses
Status
Description
Schema
200
Revocation result (includes revoked_access_tokens, revoked_refresh_tokens counts)