I’d like to suggest that Cloudflare implement an easier way to revoke existing tokens.
Currently, this can only be done when the user edits the Access Policy. So if we want to revoke the authentication of a user, it will take opening (aka “editing”) several access policies and manually clicking on the Revoke Existing Tokens button.
It would be desirable to have an option to revoke existing tokes on a per user basis, so that one request for a single user would revoke her/his authentication on all access policies.
That’s important when you have a situation like having external support folks to check your website admin area, and other situations where access need to be granted temporarily. Also good for users who stop being a user, but who may still have their browsers authenticated to access sensitive areas of a website.