Skip to main content
All endpoints require authentication. Revocation is per-company — you can only revoke passports issued by the authenticated company.

POST /v1/passports/:jti/revoke

Revokes a passport by its jti (the unique ID in the passport’s JWT claims). The revocation is permanent and takes effect immediately for server-side verification. Verifiers using offline verification should check the OCSP endpoint to detect revocations.

Path parameters

Request body (optional)

Response 200

Error responses

Example


GET /v1/passports/revoked

Returns the full revocation list for the authenticated company, ordered by revocation time.

Response 200

Example