tokenStore.removeAccessTokenUsingRefreshToken(refreshToken);
@Nullable public String revokeRefreshToken(String tokenValue, Authentication clientAuth) { OAuth2RefreshToken refreshToken = tokenStore.readRefreshToken(tokenValue); if (refreshToken != null) { OAuth2Authentication authToRevoke = tokenStore.readAuthenticationForRefreshToken(refreshToken); checkIfTokenIsIssuedToClient(clientAuth, authToRevoke); tokenStore.removeAccessTokenUsingRefreshToken(refreshToken); tokenStore.removeRefreshToken(refreshToken); log.debug("Successfully removed refresh token {} (and any associated access token).", tokenMasker.maskToken(refreshToken.getValue())); return refreshToken.getValue(); } log.debug("No refresh token {} found in the token store.", tokenMasker.maskToken(tokenValue)); return null; }
tokenStore.removeAccessTokenUsingRefreshToken(refreshToken);
tokenStore.removeAccessTokenUsingRefreshToken(refreshToken);
tokenStore.removeAccessTokenUsingRefreshToken(refreshToken);