Revoking a token
The application can revoke an access token that was issued. This means that all permissions that were granted to this token will be revoked.
 
Request
Send a request to the YooMoney OAuth server with the HTTP Authorization header containing the token to be revoked. The request must be sent using the POST method.
Request example
POST /api/revoke HTTP/1.1
Host: yoomoney.ru
Authorization: Bearer 410012345678901.0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ0123
Content-Length: 0
Response
In response, the YooMoney server returns one of the following HTTP codes:
HTTP response codeDescription
200 OKThe token was revoked successfully.
400 Bad RequestHTTP request does not conform to protocol format. Possible reasons: the request can’t be parsed; the HTTP Authorization header is missing or has an invalid value.
401 UnauthorizedThe specified token does not exist, or has already been revoked.
Successful response example
HTTP/1.1 200 OK
Content-Length: 0
Example of error response
HTTP/1.1 400 Bad Request
Content-Length: 0
See also
Authorization Request Access token request Application authorization flow App registration