This repository has been archived by the owner on Apr 26, 2024. It is now read-only.
Logout returns 200 when given an invalid access_token #2932
Labels
Z-Help-Wanted
We know exactly how to fix this issue, and would be grateful for any contribution
z-minor
(Deprecated Label)
z-p2
(Deprecated Label)
Description
According to the specification for the /logout endpoint, it invalidates an existing token. However, when supplied an invalid/non-existent access_token (such as "42") it still returns a 200 status code.
Steps to reproduce
Ideally this should respond with error code M_UNKNOWN_TOKEN to provide a more verbose error
The text was updated successfully, but these errors were encountered: