Deauthorization Webhook Handling Based on User's Role

chadk · May 11, 2020, 10:50pm

Hi. I am working on creating a user-managed OAuth App.

I’m having difficulty finding the handling for the deauthorization webhook based on the roles.

For example, if an admin or an owner sends the deauthorization, does this apply to any users authorized for the account? Or does this only apply to that user regardless of role?

With that, do I use the role_name value returned from a User GET request? Can I make a user GET request after the deauthorization is received, or does that information need to be stored upon the initial authorization?

Thank you!

tommy · May 15, 2020, 6:58pm

Hey @chadk,

Roles do not affect the deauthorization flow. User Level Apps can only be uninstalled by the user who installed them.

Does that clear things up?

Thanks,
Tommy

chadk · May 22, 2020, 7:25pm

Yes, thank you. I now realize the documentation is for both types of OAuth Apps.

tommy · May 28, 2020, 8:58pm

Happy to help!

Thanks,
Tommy

Topic		Replies	Views
Deauthorizing by account/user id? API and Webhooks	1	327	June 26, 2022
Deauthorization endpoint and tokens API and Webhooks webhooks	0	230	June 16, 2023
Is there a deadline to delete user data from deauthorized request received API and Webhooks	4	287	October 5, 2021
Deauthorization Notification - Webhook Only oAuth App App Marketplace	2	827	August 21, 2020
Deauthorization API - not webhook API and Webhooks	2	1058	August 21, 2020

Deauthorization Webhook Handling Based on User's Role

Related Topics