keycloak-scim/server_admin/topics/sessions/revocation.adoc
2017-02-14 10:00:06 +01:00

14 lines
No EOL
687 B
Text

[[_revocation-policy]]
=== Revocation Policies
If your system is compromised you will want a way to revoke all sessions and access tokens that have been handed out.
You can do this by going to the `Revocation` tab of the `Sessions` screen.
.Revocation
image:../../{{book.images}}/revocation.png[]
You can only set a time-based revocation policy. The console allows you to specify a time and date where any session
or token issued before that time and date is invalid. The `Set to now` will set the policy to the current time and date.
The `Push` button will push this revocation policy to any registered OIDC client that has the {{book.project.name}}
OIDC client adapter installed.