> ## Documentation Index
> Fetch the complete documentation index at: https://docs.limitless.exchange/llms.txt
> Use this file to discover all available pages before exploring further.

# Revoke Token

> Revokes an active API token. The token becomes immediately unusable. Requires token management to be enabled for the partner.

Revokes an active API token immediately. Once revoked, the token cannot be used for authentication and the action cannot be undone.

Requires token management to be enabled for the partner (see [Get Partner Capabilities](/api-reference/api-tokens/get-capabilities)).


## OpenAPI

````yaml DELETE /auth/api-tokens/{tokenId}
openapi: 3.0.0
info:
  title: Limitless Exchange API
  description: >-
    Production-ready REST API for prediction market trading, portfolio
    management, and market data on Limitless Exchange (Base L2).
  version: '1.0'
  contact:
    name: API Support
    url: https://limitless.exchange
    email: help@limitless.network
servers:
  - url: https://api.limitless.exchange
    description: Production API
security: []
tags:
  - name: Authentication
    description: User authentication and session management
  - name: Markets
    description: Browse, search, and analyze prediction markets
  - name: Market Navigation
    description: Navigation tree, market pages, and property filters
  - name: Trading
    description: Create, manage, and cancel orders
  - name: Portfolio
    description: Position tracking, trade history, and performance
  - name: API Tokens
    description: Scoped API token management for partner integrations
  - name: Partner Accounts
    description: Sub-account creation and allowance recovery for partner integrations
  - name: System
    description: Public API state and availability information
paths:
  /auth/api-tokens/{tokenId}:
    delete:
      tags:
        - API Tokens
      summary: Revoke token
      description: >-
        Revokes an active API token. The token becomes immediately unusable.
        Requires token management to be enabled for the partner.
      operationId: ApiTokenController_revokeToken
      parameters:
        - name: tokenId
          in: path
          required: true
          schema:
            type: string
          description: The token ID to revoke
      responses:
        '200':
          description: Token revoked successfully
          content:
            application/json:
              schema:
                type: object
                properties:
                  message:
                    type: string
                    example: API token revoked successfully
        '400':
          description: Token not found or already revoked
        '401':
          description: Not authenticated
        '403':
          description: Token management not enabled for this partner
      security:
        - HmacAuth: []
components:
  securitySchemes:
    HmacAuth:
      type: apiKey
      in: header
      name: lmts-api-key
      description: >-
        Scoped API token with HMAC-SHA256 signing. Requires three headers:
        lmts-api-key (token ID), lmts-timestamp (ISO-8601), lmts-signature
        (Base64-encoded HMAC). See Authentication docs for details.

````