Revoke Access Code
POST
/web/v1/workspaces/{workspaceId}/institutions/{institutionBizId}/portals/portal-types/{portalType}/access-code/revokeWEBRevokes the access code for the specified portal type. After revocation, the access code can no longer be used for authentication.
Authentication
Requires a valid JWT token. Gateway validation: enableJwtToken=true, enableTurnstile=false.
Request Parameters
Path Parameters
| Name | Type | Required | In | Description |
|---|---|---|---|---|
workspaceId | string | Yes | path | Workspace business ID |
institutionBizId | string | Yes | path | Institution business ID |
portalType | integer | Yes | path | Portal type code (e.g., 10010101=system, 10010102=tenant) |
Success Response
Success200
{
"code": "2000",
"message": "SUCCESS",
"data": null
}Error Responses
| Code | Description |
|---|---|
4010 | Unauthorized (invalid or missing JWT token) |
4040 | Portal or access code not found |
Notes
- This operation is irreversible. A new access code must be generated after revocation.
- Both the primary and rotating codes (if any) are revoked.