Devices
Revoke User Device
Revoke access for a specific device belonging to a user
DELETE
This endpoint requires authentication and the
viewUserDevices permission.Path Parameters
The UUID of the user whose device to revoke
The UUID of the device token to revoke
Response
A successful request returns HTTP 204 No Content status. The following actions are performed:- The device’s refresh token is blacklisted
- Any associated access tokens are blacklisted
- The tokens are removed from the database
Error Responses
Error details when the request fails
Common error cases:
- 400 Bad Request: Invalid user ID or device ID format
- 401 Unauthorized: Missing or invalid access token
- 403 Forbidden: Insufficient permissions (missing viewUserDevices)
- 404 Not Found: User or device not found
