Interface AccessTokenDenylist

Tracks revoked access-token jtis. Optional ComponentMap slot; when present, verifyJwt consults has(jti) and /oauth/revoke AT path calls add(jti, expiresAtMs).

Wave 2 forward-compat: signature is add(jti, expiresAtMs, options?). Wave 1 implementations omit options parameter and remain valid when Wave 2 adds DPoP cnf binding.

interface AccessTokenDenylist {
    kind: string;
    add(jti: string, expiresAtMs: number): Promise<void>;
    has(jti: string): Promise<boolean>;
}

Index

Properties

kind

Methods

add has

Properties

`Readonly`kind

kind: string

Methods

add

add(jti: string, expiresAtMs: number): Promise<void>
Parameters
- jti: string
- expiresAtMs: number
Returns Promise<void>
- Defined in packages/core/src/access-token-denylist/types.mts:26

has

has(jti: string): Promise<boolean>
Parameters
- jti: string
Returns Promise<boolean>
- Defined in packages/core/src/access-token-denylist/types.mts:27

Interface AccessTokenDenylist

Index

Properties

Methods

Properties

`Readonly`kind

Methods

add

Parameters

Returns Promise<void>

has

Parameters

Returns Promise<boolean>

Settings

On This Page

Interface AccessTokenDenylist

Index

Properties

Methods

Properties

Readonlykind

Methods

add

Parameters

Returns Promise<void>

has

Parameters

Returns Promise<boolean>

Settings

On This Page

`Readonly`kind