DELETE /api/my-account/sessions/{sessionId}
O auth2

Revoke a specific user session by its ID, optionally revoking target associated grants and tokens. A logto-verification-id in header is required for revoking sessions.

Path parameters

  • sessionId string Required

    The unique identifier of the session.

Query parameters

  • revokeGrantsTarget string

    Optional target for revoking associated grants and tokens. 'all' revokes grants for every application authorized by this session. 'firstParty' revokes only first-party app grants; third-party app grants remain active. If omitted, grants remain active when the session authorizations include offline_access; otherwise they are revoked.

    Values are all or firstParty.

Responses

  • 204

    The session was revoked successfully.

  • 400

    The field is not editable.

  • 401

    Unauthorized

  • 403

    Forbidden

  • 404

    The session does not exist.

  • 500

    Internal Server Error

DELETE /api/my-account/sessions/{sessionId} 
curl \
 --request DELETE 'https://[tenant_id].logto.app/api/my-account/sessions/{sessionId}' \
 --header "Authorization: Bearer $ACCESS_TOKEN"