Zitadel Preview Docs

Revoke my session

Revokes the session immediately (`state: revoked`). This is the logout operation. The __nextgen_session cookie issued at creation (or superseded by a handoff exchange) is required. After revocation, any tokens derived from this session are invalidated including the cookie itself, which is cleared in the response.

DELETE
/sessions/me

Revokes the session immediately (state: revoked). This is the logout operation.

The __nextgen_session cookie issued at creation (or superseded by a handoff exchange) is required. After revocation, any tokens derived from this session are invalidated including the cookie itself, which is cleared in the response.

Authorization

nextgenSession
__nextgen_session<token>

The __nextgen_session cookie issued at session creation or superseding handoff exchange.

A missing or invalid cookie yields 401 with code auth.unauthorized and the message Missing or invalid session token.

In: cookie

Response Body

application/json

application/json

application/json

application/json

curl -X DELETE "https://example.com/sessions/me"
Empty
{  "code": "string",  "message": "string",  "details": {}}
{  "code": "string",  "message": "string",  "details": {}}
{  "code": "string",  "message": "string",  "details": {}}
{  "code": "string",  "message": "string",  "details": {}}