summaryrefslogtreecommitdiff
path: root/lib/api/personal_access_tokens/self_revocation.rb
diff options
context:
space:
mode:
Diffstat (limited to 'lib/api/personal_access_tokens/self_revocation.rb')
-rw-r--r--lib/api/personal_access_tokens/self_revocation.rb26
1 files changed, 26 insertions, 0 deletions
diff --git a/lib/api/personal_access_tokens/self_revocation.rb b/lib/api/personal_access_tokens/self_revocation.rb
new file mode 100644
index 00000000000..22e07f4cc7b
--- /dev/null
+++ b/lib/api/personal_access_tokens/self_revocation.rb
@@ -0,0 +1,26 @@
+# frozen_string_literal: true
+
+module API
+ class PersonalAccessTokens
+ class SelfRevocation < ::API::Base
+ include APIGuard
+
+ feature_category :authentication_and_authorization
+
+ helpers ::API::Helpers::PersonalAccessTokensHelpers
+
+ # As any token regardless of `scope` should be able to revoke itself
+ # all availabe scopes are allowed for this API class.
+ # Please be aware of the permissive scope when adding new endpoints to this class.
+ allow_access_with_scope(Gitlab::Auth.all_available_scopes)
+
+ before { authenticate! }
+
+ resource :personal_access_tokens do
+ delete 'self' do
+ revoke_token(access_token)
+ end
+ end
+ end
+ end
+end
View Lorry Controller Status