I want to revoke a token carrier in Asp.net-Identity. I tried calling UpdateSecurityStampAsync (userId) and I can verify that my user security mark is being updated. But old tokens are still relevant. Does this only mean invalidating cookie authentication?
Is it possible to solve it differently?
source
share