Delete All Sessions

DELETE 
/api/users/me/sessions

Invalidates all the user's active sessions. This also invalidates all AccessTokens and RefreshTokens. Therefore, logging out the user from all devices.

You can learn more about sessions here.

Tokens

• A valid AccessToken is required.

Responses

200

Successfully deleted all sessions.

401

Invalid or expired AccessToken.

• ACCESS_TOKEN_EXPIRED: Indicates that the access token is expired.
• ACCESS_TOKEN_INVALID: Indicates that the access token cannot be decoded.
• AUTHENTICATION_REQUIRED: User is not authenticated.

404

The following error codes correspond to this status:

• PRINCIPAL_NOT_FOUND: No principal with specified ID found.

500

The following error codes correspond to this status:

• ACCESS_TOKEN_ALLOWLIST_READING_FAILURE: Represents an exception indicating a failure when reading the allowlist for an access token cache.
• DATABASE_FAILURE: Exception representing a general failure related to database operations.
• DATABASE_ENCRYPTION_FAILURE: Exception representing a general failure related to database encryption operations.
• COOKIE_CREATION_FAILURE: Thrown when an exception occurred during the creation of a cookie.
• POST_COMMIT_SIDE_EFFECT_FAILURE: Exception representing a failure to perform a side effect after a successful database operation.
• CACHE_KEY_NOT_FOUND: Represents an exception that occurs when a requested key is not found in the cache.
• CACHE_OBJECT_MAPPING_FAILURE: Represents an exception that occurs during object mapping operations within a cache.
• CACHE_OPERATION_FAILURE: Represents an exception that occurs during cache operation failures.