# Sessions Manage user sessions that are created upon successful 'frontend' authentication. This does not apply to the methods implemented via a backend-to-backend integration (under 'Backend Authentication'). ## Servers Sandbox environment ``` https://api.sbx.transmitsecurity.io/cis ``` Production environment (US) ``` https://api.transmitsecurity.io/cis ``` Production environment (EU) ``` https://api.eu.transmitsecurity.io/cis ``` Production environment (CA) ``` https://api.ca.transmitsecurity.io/cis ``` Production environment (AU) ``` https://api.au.transmitsecurity.io/cis ``` ## Security ### bearer Type: http Scheme: bearer Bearer Format: JWT ### UserAccessToken A token returned upon end-user authentication, which provides access to resources and data for the user and app for which it was generated Type: http Scheme: bearer Bearer Format: JWT ### AdminAccessToken A token generated by a management application using the [token endpoint](/openapi/token.openapi/other/getaccesstoken). It provides access to all resources for the tenant and its apps Type: oauth2 ### ClientAccessToken A token generated by an end-user application using the [token endpoint](/openapi/token.openapi/other/getaccesstoken). It provides access to resources and data on the tenant level or associated with the specific application (but not other apps in the tenant) Type: oauth2 ### OrgAdminAccessToken A token returned upon B2B authentication for a user that has the organizationAdmin or organizationCreator role. Type: oauth2 ## Download OpenAPI description [Sessions](https://developer.transmitsecurity.com/_bundle/openapi/user/sessions.openapi.yaml) ## Other ### Get user sessions - [GET /v1/sessions/{user_id}](https://developer.transmitsecurity.com/openapi/user/sessions.openapi/other/getusersessions.md): Retrieves all active sessions for a specified user. Required permissions: apps:read, [appId]:read, sessions:read. ### Revoke sessions - [DELETE /v1/sessions/{user_id}](https://developer.transmitsecurity.com/openapi/user/sessions.openapi/other/deleteusersessions.md): Revokes all refresh tokens and logs out of all sessions for a specified user. Required permissions: apps:delete, [appId]:delete, sessions:delete.