Cognito Revoke Token

RevokeToken API introduced in June 2021, I have a business problem. RevokeToken Expiration Time : 30 Days AccessToken Expiration Time : 30 Minutes If i logging into two devices with same user with some delay and generate AccessToken and RefreshToken, Firsly generated RefreshToken will be revoked automatically when the user logging the same credential in the second device. But the lastly generated accessToken from first refreshtoken will be in live for that 30 mins when that refresh token is invalid or revoked. How to invalidate that accessToken? please suggest a solution for it?

Topics

Security, Identity, & Compliance Microservices AWS Well-Architected Framework

Relevant content

Does Cognito's RevokeToken API call invalidate Access Tokens and/or Id Tokens and/or Refresh Tokens?
aaronmaxcarver
asked 2 years ago
Cognito access token not expiring after user logout
rePost-User-7602336
asked 10 months ago
Cognito OAuth Non Expiring Token
Accepted Answer
AWS-User-2199635
asked 6 years ago
Cognito - Invalidate access token, when we having multiple access token in a short time
Prem
asked a year ago
How do I revoke refresh tokens issued by Amazon Cognito?
AWS OFFICIALUpdated a year ago
How do I resolve a certificate expiration error for the Let's Encrypt certificate on my EC2 instance?
AWS OFFICIALUpdated 2 years ago
How do I revoke JWT tokens in Amazon Cognito using the AWS CLI?
AWS OFFICIALUpdated a year ago
Why is my presigned URL for an Amazon S3 bucket expiring before the expiration time that I specified?
AWS OFFICIALUpdated 2 years ago
AWS Cognito Finally Supports Custom Claims for Access Tokens
EXPERT
Antonio_Lagrotteria
published a month ago
Announcement: RDS/Aurora SSL/TLS Certificates are expiring between May and October 2024
EXPERT
randyyoung
published a month ago