POST /oauth/revoke

Required authentication: Application
Supported formats: json

Revokes the OAuth grant identified by the provided grant_id. The entire grant is immediately invalidated, no futher requests may be made using its grant_id or grant_secret. A minimal revoked version of the grant is returned as confirmation.

The user must perform the full OAuth flow to establish a new grant with your application if they so desire.

This method is designed to allow your application to proactively disconnect from this user’s Scryfall account from your side.

Parameter Type Atn Details
grant_id UUID The grant_id to invalidate.

Example Requests

Revoke an OAuth grant

POST https://api.scryfall.com/oauth/revoke
Host: api.scryfall.com
Content-Type: application/json
Authorization: Bearer cs-ExampleSecret

{
  "grant_id": "cd168bc8-645d-4111-b44f-6cf982df3631"
}
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8

{
  "object": "oauth_grant",
  "grant_id": "cd168bc8-645d-4111-b44f-6cf982df3631",
  "created_at": "2018-08-24T03:31:31-04:00",
  "revoked": true
}