I am able to get the user's access token using the auth code after getting the users permission for the application. But revoking the access token using
curl -X POST https://api.box.com/oauth2/revoke \ -H 'Content-Type: application/x-www-form-urlencoded' \ -d 'client_id=[CLIENT_ID]' \ -d 'client_secret=[CLIENT_SECRET]' \ -d 'token=[ACCESS_TOKEN]'
is only working when I do it within a short time after the connection of the app and we can see the application has been removed from the account settings security tab. When I try the same after a long period( a day) the revoke call is running without any error but still we can see the application in the account settings security tab. Would appreciate any help to resolve this.
Please sign in to leave a comment.