Skip to main content
POST
https://api.replyke.com/api/v6
/
:projectId
/
auth
/
sign-out
Sign Out
curl --request POST \
  --url https://api.replyke.com/api/v6/:projectId/auth/sign-out \
  --header 'Content-Type: application/json' \
  --data '
{
  "refreshToken": "<string>"
}
'
Signs the user out by deleting the refresh token from the database and clearing the HttpOnly cookie. Accepts the refresh token from either the request body or cookie.

Headers

Cookie
string
Can include replyke-refresh-jwt cookie with the refresh token

Body Parameters

refreshToken
string
JWT refresh token (optional if provided via cookie)

Response

Returns 204 No Content on success with no response body

Error Responses

{
  "error": "Internal server error.",
  "code": "auth/server-error",
  "details": "<Error message>"
}

Notes

  • If the refresh token is valid, the corresponding token record is deleted.
  • If the refresh token is invalid, expired, or missing, 204 is still returned.
  • The cookie replyke-refresh-jwt is cleared if present.
  • No information is leaked about whether the token existed or was valid.