API ReferenceAuthentication API

Revoke Keycloak refresh token

Revokes a refresh token to invalidate it

Request Body

Token to revoke

refresh_token?string

curl -X POST "https://loading/auth/revoke" \
  -H "Content-Type: application/json" \
  -d '{}'

curl -X POST "https://loading/auth/revoke" \  -H "Content-Type: application/json" \  -d '{}'

{
  "message": "string"
}

{
  "code": "string",
  "error": "string",
  "message": "string",
  "request_id": "string"
}

{
  "code": "string",
  "error": "string",
  "message": "string",
  "request_id": "string"
}

Refresh access token POST

Exchanges a valid refresh token for a new access token. Refresh token must be provided in Authorization header or refresh_token cookie.

Upgrade guest to permanent account POST

Converts a guest user account to a permanent account with email/password credentials. Guest flag is removed and user gains full access.