wso2 revoke api is not revoking the token

3
votes

WSO2 version: WSO2IS-5.7.0

I am doing proof of concept on WSO2 identity server and my goal is to achieve single sign on for the applications. I generated the JWT token from WSO2 using OAUTH2 token API. I used the revoke API to revoke the token and i got 200 response. Again i invoked introspect token API and i got response as active:true but i suppose to get active:false.

1
wso2wso2is
" I generated the JWT token from WSO2 using OAUTH2 token API." what do you mean by JWT ? self contained JWT access token or id_token ?Gayan
During service provider creation, I have enabled option "JWT"user2771680
Can you share more details? For example are you trying this on a single node or a cluster. Requests you send and response you get?farasath

1 Answers

1
votes

This is a known issue in WSO2 Identity Server 5.7.0. It has been reported here and will be fixed in 5.8.0 GA release.