Skip to content

End a Direct Auth managed browser session.

POST
/api/v1/auth/direct/logout
Code sample: Shell / cURL
curl --request POST \
--url https://auth.example.com/api/v1/auth/direct/logout \
--header 'Content-Type: application/json' \
--data '{ "client_id": "client_123", "revoke_tokens": false }'

Invalidates the current Direct Auth session when present, optionally revokes associated device secrets according to logout_scope, and clears Direct Auth cookies.

Media type application/json
object
client_id
string
revoke_tokens
boolean
logout_scope
string
Example
{
"client_id": "client_123",
"revoke_tokens": false
}

Successful JSON response.

Media type application/json
object
success
required
boolean
message
required
string
Example
{
"success": true,
"message": "Logged out successfully"
}

Error response.

Media type application/json
object
error
string
error_description
string
message
string
webauthn_signal

Optional browser-side WebAuthn Signal API hint. When unknown_credential is true, clients that just received a WebAuthn credential assertion may call PublicKeyCredential.signalUnknownCredential() for that credential ID.

object
unknown_credential
boolean
key
additional properties
Example generated
{
"error": "example",
"error_description": "example",
"message": "example",
"webauthn_signal": {
"unknown_credential": true
}
}

Error response.

Media type application/json
object
error
string
error_description
string
message
string
webauthn_signal

Optional browser-side WebAuthn Signal API hint. When unknown_credential is true, clients that just received a WebAuthn credential assertion may call PublicKeyCredential.signalUnknownCredential() for that credential ID.

object
unknown_credential
boolean
key
additional properties
Example generated
{
"error": "example",
"error_description": "example",
"message": "example",
"webauthn_signal": {
"unknown_credential": true
}
}

Error response.

Media type application/json
object
error
string
error_description
string
message
string
webauthn_signal

Optional browser-side WebAuthn Signal API hint. When unknown_credential is true, clients that just received a WebAuthn credential assertion may call PublicKeyCredential.signalUnknownCredential() for that credential ID.

object
unknown_credential
boolean
key
additional properties
Example generated
{
"error": "example",
"error_description": "example",
"message": "example",
"webauthn_signal": {
"unknown_credential": true
}
}