Revocation.CanAccessTokensBeRevoked

Can access tokens be revoked

This test checks if the revocation endpoint supports revoking access tokens.

View source code on GitHub

Documents

This test is part of the following document(s):

• OAuth 2.0 Token Revocation (RFC7009), section 2 (should)
• OAuth 2.0 Attacks & Defenses (AttsDefs), section unknown (should)

Back to the test case overview or the threat overview