Skip to main content
DELETE
/
auth
/
clients
/
{authorizedClientId}
Revoke an authorized client
curl --request DELETE \
  --url https://app.dynamicauth.com/api/v0/auth/clients/{authorizedClientId} \
  --header 'Authorization: Bearer <token>'
{
  "id": "95b11417-f18f-457f-8804-68e361f9164f",
  "client_type": "cli",
  "created_at": "2023-11-07T05:31:56Z",
  "expires_at": "2023-11-07T05:31:56Z",
  "client_name": "<string>",
  "client_version": "<string>",
  "label": "<string>",
  "ip_at_grant": "<string>",
  "last_used_at": "2023-11-07T05:31:56Z",
  "revoked_at": "2023-11-07T05:31:56Z",
  "is_current": true
}

Documentation Index

Fetch the complete documentation index at: https://www.dynamic.xyz/docs/llms.txt

Use this file to discover all available pages before exploring further.

Authorizations

Authorization
string
header
required

Bearer authentication header of the form Bearer <token>, where <token> is your auth token.

Path Parameters

authorizedClientId
string
required
Required string length: 36
Pattern: ^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$
Example:

"95b11417-f18f-457f-8804-68e361f9164f"

Response

Authorized client revoked.

A first-party client (CLI / MCP / demo / IDE plugin) authorized to act as the user via the OAuth grant flow. Surfaced in Profile → Authorized Clients for management.

id
string
required
Required string length: 36
Pattern: ^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$
Example:

"95b11417-f18f-457f-8804-68e361f9164f"

client_type
enum<string>
required

Type of first-party client being authorized. cli for the dyn CLI, mcp for an MCP server, demo for demo applications oauth-ing into redcoast, ide-plugin for editor extensions, and other as a catch-all.

Available options:
cli,
mcp,
demo,
ide-plugin,
other
created_at
string<date-time>
required
expires_at
string<date-time>
required

When the client's JWT naturally expires (typically 30 days post-grant).

client_name
string | null

Package or product name reported at grant time.

client_version
string | null

Version reported at grant time.

label
string | null

User-editable label. Defaults to client_metadata.hostname at grant time; the user can rename it from the management UI.

ip_at_grant
string | null

IP address recorded at grant approval time.

last_used_at
string<date-time> | null

Timestamp of the most recent successful auth check. Sampled at most once per minute per client to avoid write amplification on hot loops.

revoked_at
string<date-time> | null

When the client was revoked. Null = active.

is_current
boolean

True when the listing request's own JWT references this row. The UI uses this to render a "This client" badge and require extra confirmation on revoke.