WiPay
WAPIsv2.0.0Authentication

Revoke

Revoke an active access token

Invalidate the currently active access token. After revoking, the token can no longer be used for API calls.

Endpoint

DELETE /auth/tokens
AccessRequirement
AuthenticatedYes
Required ScopeAny valid WAPI scope on the active token
Rate Limit5 requests per minute

This endpoint revokes OAuth bearer tokens only. Do not use X-WAPI-Key for this endpoint.

Request

Headers

HeaderValue
Acceptapplication/json
AuthorizationBearer <access_token>

No request body is required.

Responses

200 OK

{
  "message": "OK"
}

400 Bad Request

{
  "message": "Token revocation is not supported for WAPI Key authenticated requests."
}

401 Unauthorized

{
  "message": "Unauthenticated."
}

403 Forbidden

{
  "message": "Forbidden"
}

Example

curl -X DELETE https://ttsb.wipayfinancial.com/wapi/auth/tokens \
  -H "Accept: application/json" \
  -H "Authorization: Bearer <access_token>"

Refresh

Obtain a new access token using a refresh token

Retrieve Profile

Retrieve the authenticated user's profile, balances, and bank configuration status

On this page

EndpointRequestHeadersResponses200 OK400 Bad Request401 Unauthorized403 ForbiddenExample