4.24. Organisation Administrator - Delete organisation access tokens [new]
| Id | 4. |
| Description | As an Organisation Administrator I need to be able to delete access tokens for users belonging to my organisation So that I can revoke access to the APIs for the different users |
| Priority | Medium |
| Actors | Application Administrator |
| API Calls | DELETE /admin/tokens |
| Linked Processes | |
| Status | Implemented |
Preconditions
- The User must be authenticated and have the Organisation Administrator role.
- The Token that the Organisation Administrator wants to delete a token must exist on the platform.
Postconditions
- The User token is deleted
Main flow
- The Organisation Administrator retrieves the existing tokens.
- The Organisation Administrator uses the API to delete a selected token.
- The system confirms that the token was deleted.
Exceptions
[400 Bad Request] Invalid input:
If mandatory fields are missing or invalid, the system returns an error message.
[404 Not Found] Token not found
The token, that the Organisation Administrator tried to delete does not exist.
[500 Internal Server Error] System Error
If the system fails to save changes due to an internal error, it displays an appropriate message and logs the error for further investigation.