Using Asana's NodeJS module (https://github.com/Asana/node-asana) with OAuth, is there anything I can do to revoke a user's access and/or refresh token?
Currently when a user tells me they want to disconnect from Asana, I just forget their tokens. But it seems like it would be more friendly to pass the word on to Asana too so they can clean up the data on their end.
If a user wants to revoke authorization to an app they currently have to go through the app management screen (under account settings). This is an interesting suggestion - have you seen other APIs that do this in a way you like?