Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

:thread: [Ory Hydra] token revocation use-case

I see there is an API: `GET /admin/oauth2/auth/sessions/consent?subject=&lt;sub&gt;` . that tells about all the Oauth2 processed requests.

there is another API: `/oauth2/revoke` that can revoke any given access-token.

now i am trying to connect the dots using these APIs.

*My use-case:* Let us say a customer has given multiple Access-Token to a specific clients, now he would want to remove only one of those Access token, is there any way around it?

currently there is one API: `DELETE /admin/oauth2/auth/sessions/consent?subject=&lt;sub&gt;&amp;client=&lt;client-id&gt;` , but it removes all the access token given to client.

cc: <@U011D3UQKNY> <@U010UKXCPP0>

See this document: <https://www.ory.sh/docs/oauth2-oidc/revoke-consent>