Skip to main content

Get a Personal-Access-Token (PAT) by ID​

Delete a PAT from a user. Afterward, the user will not be able to authenticate with that token anymore.

Path Parameters
    userId string required
    tokenId string required
Header Parameters
    x-zitadel-orgid string

    The default is always the organization of the requesting user. If you like to get a result from another organization include the header. Make sure the requesting user has permission in the requested organization.

Responses

OK


Schema
    details object
    sequence uint64

    on read: the sequence of the last event reduced by the projection

    on manipulation: the timestamp of the event(s) added by the manipulation

    creationDate date-time

    on read: the timestamp of the first event of the object

    on create: the timestamp of the event(s) added by the manipulation

    changeDate date-time

    on read: the timestamp of the last event reduced by the projection

    on manipulation: the

    resourceOwner resource_owner is the organization an object belongs to
DELETE /users/:userId/pats/:tokenId

Authorization

name: OAuth2type: oauth2scopes: openid,urn:zitadel:iam:org:project:id:zitadel:audflows: {
  "authorizationCode": {
    "authorizationUrl": "$CUSTOM-DOMAIN/oauth/v2/authorize",
    "tokenUrl": "$CUSTOM-DOMAIN/oauth/v2/token",
    "scopes": {
      "openid": "openid",
      "urn:zitadel:iam:org:project:id:zitadel:aud": "urn:zitadel:iam:org:project:id:zitadel:aud"
    }
  }
}

Request

Base URL
https://$CUSTOM-DOMAIN/management/v1
Bearer Token
userId — path required
tokenId — path required
x-zitadel-orgid — header
Accept
curl / cURL
curl -L -X DELETE 'https://$CUSTOM-DOMAIN/management/v1/users/:userId/pats/:tokenId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'