Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

Hi Folks, Do we have any way to revoke access or refresh token without calling an API revoke token? Because we have backoffice that allow to terminate account from system and need to clear any data related to hydra such as
• Auth session - I can do by  using revoke auth session API
• Consent session - I can do by using revoke consent session API
• Access / Refresh token - We cannot do because we don't have any token store on backoffice side.
Could you please help us for suggestion or any solution to achieve this.