07-23-2021 07:43
- Mark as New
- Bookmark
- Subscribe
- Permalink
- Report this post

07-23-2021 07:43
- Mark as New
- Bookmark
- Subscribe
- Permalink
- Report this post
Does revoking a user token (using https://dev.fitbit.com/build/reference/web-api/oauth2/#revoking-tokens) also remove any subscriptions for the user?
I want to provide an option in my app for the user to "Disconnect" data feed from Fitbit. I'm assuming I need to
- Remove any Subscriptions for the user
- Revoke the user's token
Thanks!
Answered! Go to the Best Answer.
Accepted Solutions
08-03-2021 07:55
- Mark as New
- Bookmark
- Subscribe
- Permalink
- Report this post



08-03-2021 07:55
- Mark as New
- Bookmark
- Subscribe
- Permalink
- Report this post
When the user revokes consent, we can sent you a notification stating the revoked occurred, and we should be deleting the subscription. If you want to execute the Delete Subscription endpoint to confirm the subscriptions are removed, you can. However, it should not be neccessary.
Gordon
Senior Technical Solutions Consultant
Fitbit Partner Engineering & Web API Support | Google

07-23-2021 10:56
- Mark as New
- Bookmark
- Subscribe
- Permalink
- Report this post



07-23-2021 10:56
- Mark as New
- Bookmark
- Subscribe
- Permalink
- Report this post
Hi @Jeff_New_Ocean.
When a user revokes consent to an application, Fitbit automatically deletes any subscriptions associated with that user and application. This prevents the application from receiving notifications for tokens that were invalidated.
Just so I understand, in addition to providing your Fitbit users an option to revoke consent to your application, you also want these users to have control of when your application is being alerted of new data available on their account?

07-26-2021 08:34 - edited 07-26-2021 09:04
- Mark as New
- Bookmark
- Subscribe
- Permalink
- Report this post

07-26-2021 08:34 - edited 07-26-2021 09:04
- Mark as New
- Bookmark
- Subscribe
- Permalink
- Report this post
Hi @JohnFitbit,
I was looking to give the users the ability to disconnect their Fitbit data consent from within our app (if they are connected), in the same location that they can decide to connect their Fitbit to our app (if they are not connected yet). I just assumed for completeness that if the user decided to revoke consent to our application (from within our app), we needed to also remove any subscriptions that were created for them.

08-03-2021 07:55
- Mark as New
- Bookmark
- Subscribe
- Permalink
- Report this post



08-03-2021 07:55
- Mark as New
- Bookmark
- Subscribe
- Permalink
- Report this post
When the user revokes consent, we can sent you a notification stating the revoked occurred, and we should be deleting the subscription. If you want to execute the Delete Subscription endpoint to confirm the subscriptions are removed, you can. However, it should not be neccessary.
Gordon
Senior Technical Solutions Consultant
Fitbit Partner Engineering & Web API Support | Google

