Revokes the JWKS tokens from the requested OIDC identity provider.
The atlas api sub-command is automatically generated from the MongoDB Atlas Admin API and offers full coverage of the Admin API. Admin API capabilities have their own release lifecycle, which you can check via the provided API endpoint documentation link.
To use this resource, the requesting Service Account or API Key must have the Organization Owner role in one of the connected organizations.
Note: Revoking your JWKS tokens immediately refreshes your IdP public keys from all your Atlas clusters, invalidating previously signed access tokens and logging out all users. You may need to restart your MongoDB clients. All organizations connected to the identity provider will be affected.
This command is autogenerated and corresponds 1:1 with the Atlas API endpoint https://www.mongodb.com/docs/api/doc/atlas-admin-api-v2/operation/operation-revokefederationsettingidentityproviderjwks.
For more information and examples, see the referenced API documentation linked above.
Syntax
atlas api federatedAuthentication revokeIdentityProviderJwks [options] 
Options
| Name | Type | Required | Description | 
|---|---|---|---|
| --envelope | envelope | false | Flag that indicates whether Application wraps the response in an envelope JSON object. Some API clients cannot access the HTTP response headers or status code. To remediate this, set envelope=true in the query. Endpoints that return a list of results use the results object as an envelope. Application adds the status parameter to the response body. | 
| --federationSettingsId | string | true | Unique 24-hexadecimal digit string that identifies your federation. | 
| -h, --help | false | help for revokeIdentityProviderJwks | |
| --identityProviderId | string | true | Unique 24-hexadecimal digit string that identifies the identity provider to connect. | 
| -o, --output | string | false | preferred api format, can be ["json", go-template] This value defaults to "json". | 
| --outputFile | string | false | file to write the api output to. This flag is required when the output of an endpoint is binary (ex: gzip) and the command is not piped (ex: atlas command > out.zip) | 
| --version | string | false | api version to use when calling the api call [options: "2023-11-15"], defaults to the latest version or the profiles api_version config value if set This value defaults to "2023-11-15". | 
Inherited Options
| Name | Type | Required | Description | 
|---|---|---|---|
| -P, --profile | string | false | Name of the profile to use from your configuration file. To learn about profiles for the Atlas CLI, see https://dochub.mongodb.org/core/atlas-cli-save-connection-settings. | 
Examples
atlas api federatedAuthentication revokeIdentityProviderJwks --version 2023-11-15 --federationSettingsId 55fa922fb343282757d9554e --identityProviderId 32b6e34b3d91647abb20e7b8