Some auth servers implement it. Keycloak does[0]. Auth0 doesn't as far as I can tell[1]. FusionAuth (my employer) has had it listed as a possible feature for years[2] but it never has had the community feedback to bubble it up to the top of our todo list.
Some auth servers implement it. Keycloak does[0]. Auth0 doesn't as far as I can tell[1]. FusionAuth (my employer) has had it listed as a possible feature for years[2] but it never has had the community feedback to bubble it up to the top of our todo list.
0: https://www.keycloak.org/securing-apps/oidc-layers#_token_re...
1: https://auth0.com/docs/secure/tokens/revoke-tokens
2: https://github.com/fusionAuth/fusionauth-issues/issues/201