Revoke Session API (1.0.0)
Download OpenAPI specification:Download
This API is implemented by the identity provider to receive the necessary information to revoke a session if a certificate has been added to the DoD CRL lists that SmartBridge believes may have an active session in the Identity Provider.
Information from the user's public certificate to allow the system to determine which user/session to invalidate.
Information about the CAC/PIV user from the public certificate on their smart card. All data elements in this API are available in the IL2 environment.
Request Body schema: application/json
Login Information
| jwt required | string <jwt> the encoded string representation of the JWT - Payload is described here '#/components/schema/JWTPayload' |
| emailAddress required | string email address |
| subjectCommonName | string subject's name field from the CAC's certificate |
| serialNum required | string serial number from the CAC's certificate |
| edipi | string DoD ID - only available in specific environment |
| revocationReason | string reason given for the CAC revocation on the CRL |
| revocationDate required | string <date-time> The date and time (in UTC) before which this certificate is not valid |
Responses
Request samples
- Payload
{- "jwt": "eyJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJuZXRyaXN0c21hcnRicmlkZ2UuY29tIiwiYXVkIjoiYXBpLm5ldHJpc3RzbWFydGJyaWRnZS5jb20iLCJzdWIiOiJTdGV2ZUBleGFtcGxlLmNvbSIsImV4cCI6MTYyMDM4ODg1MiwiaWF0IjoxNjIwMzg4NTUyLCJqdGkiOiI3OGQ0NTY0OC04M2Y2LTQ2YmEtOTgyNi1kMmE0MjdjYTU3NjIifQ.GgTtZL7yBG3kiuC-A1LOXHd1AX-u5cSRnNJYv8RS9X0",
- "emailAddress": "string",
- "subjectCommonName": "string",
- "serialNum": "string",
- "edipi": "string",
- "revocationReason": "string",
- "revocationDate": "2020-06-13T14:00:04Z"
}