When you revoke an OAuth2 client, access to the associated API and its resources is blocked when you try to access them using an OAuth2 token that is generated using the OAuth2 client.

It is recommended that a gateway instance (for example, Mediator) is up and running.

An OAuth2 client can be revoked by an API provider and an API consumer from the asset details page and User Preferences page, respectively. For procedures, see: