post https://{applicationQualifiedDomain}.us.wristband.dev/users//refresh-tokens/revoke
Revokes all refresh tokens associated to a user.
Required Permissions
Below is the list of required permissions needed to interact with this API. For each permission the allowed permission boundaries are also specified.
| Permission | Boundary | Description |
|---|---|---|
| refresh-token:revoke | Application | The subject can revoke the refresh tokens for any user under the application that the subject belongs to. |
| Tenant | The subject can revoke the refresh tokens for any user under the the tenant that the subject belongs to. | |
| Tenant Inclusion List | The subject can revoke the refresh tokens for any user associated to tenants specified in the tenant inclusion list. | |
| Tenant Exclusion List | The subject can revoke the refresh tokens for any user associated to tenants that belong to the subject's application but are not included in the tenant exclusion list. | |
| Self | A user subject can revoke their own refresh tokens. |