Revoking A Trello Token
Third-party applications can be granted access to your Trello account via an authorization flow. When you grant access, Trello gives the third-party developer a token that can be used to make requests to Trello on your behalf.
Occasionally, you may need to revoke that token's access to your account. Follow the steps below to revoke a token:
1. Visit Your Account Settings Page: You can quickly navigate your account settings page by logging into Trello and visiting: https://trello.com/my/account. You can also get to your account settings page by clicking on your avatar in the Trello app and selecting "Settings" from the dropdown menu.
2. Scroll Down To Applications Section: The Applications section contains a list of all applications you've granted access to. The listing for each application includes its name, when you granted access, the level of access that was granted, and when the grant expires.
3. Click Revoke Button: Finally, to revoke access to the token, you can click on the Revoke button.
With Trello Enterprise, the Enterprise Admin can use the Enterprise Admin Dashboard to see tokens generated by managed Enterprise members, as well as Trello Mobile app session tokens. Admin can filter by Power-Up and Mobile Session token type and delete the API tokens to remove authorization to the integration. Admin can also choose to restrict managed members from creating new API tokens. If this option is used by Enterprise Admin, users who try to authorize an available third-party integration will see an error message with a '400' code and a message to contact their Enterprise Admin team for authorization. When a Mobile Session token is deleted by Admin, the user will be logged out of Trello on mobile. If Admin selects to restrict managed members from creating new API tokens, active managed users can still create Mobile Session tokens and log back into the app.