Breaking Change: Invalidate All Refresh Tokens update in Microsoft Graph Beta

Microsoft identity platform team

February 28th, 2019 0

We’re announcing that we will be deploying a breaking change to the invalidateRefreshTokens action in the Microsoft Graph beta endpoint starting in March. We expect the breaking change to be fully deployed by the end of March. The following are the updates:

  • The invalidateAllRefreshTokens service action is renamed to revokeSignInSessions
  • The refreshTokensValidFromDateTime property on the user resource is renamed to signInSessionsValidFromDateTime

This will affect existing applications that are calling invalidateAllRefreshTokens 

Current behavior 

Request 

POST https://graph.microsoft.com/beta/users/{id}/invalidateAllRefreshTokens 

Response 

HTTP/1.1 204 No Content 

New behavior  

Request 

POST https://graph.microsoft.com/beta/users/{id}/revokeSignInSessions 

Response  

HTTP/1.1 204 No Content 

Call to action 

If your app has a dependency on invalidateAllRefreshTokens, update your apps as needed to handle this scenario. We welcome your feedback on UserVoice and if you have further questions reach out to us on StackOverflow.

-The Microsoft Identity Platform Team

Microsoft identity platform team

Read next

Preview release of the Node.js Bot Builder v4 SDK for Microsoft Teams
We’re excited to announce the preview release of the Node.js Teams Bot Builder v4 SDK. This has consistently been a top ask from our bot builders and we’re very happy to begin expanding our support for bots built on Bot Framework to include the newest version. This preview release is just the beginning; over the next few months we’ll be adding new documentation, samples and releasing our SDKs for both .NET and Node.js.
Microsoft Teams team
March 6, 2019

Feedback usabilla icon