> ## Documentation Index > Fetch the complete documentation index at: https://developers.argosidentity.com/llms.txt > Use this file to discover all available pages before exploring further. # DELETE/Token > Secure token deletion API guide in private mode with encryption Securely delete registered tokens. You can delete up to 5,000 tokens in batch, with partial processing support. Token deletion is an irreversible operation. Please review carefully before deletion. ## Basic Information **DELETE** [https://rest-api.argosidentity.com/v3/submission/tokens](https://rest-api.argosidentity.com/v3/submission/tokens) ## Security Settings ### Encrypted Transmission When the **Secure Data Transmission** option is enabled, requests and responses are encrypted with AES-256. * Encryption method: **AES-256** * Coverage: Request and response data * Compatibility: Same encryption/decryption method as POST/submission, PATCH/submission, GET/submission * [Secure Data Transfer Options](/en/idcheck/getting-started/encrypt-and-decrypt-data/overview#4-secure-data-transfer-options) ### Data Security Deleted token data is completely removed and cannot be recovered. In secure data transmission, the deletion process also proceeds with encryption. ### Authentication Set your project API key. Set the MIME type of the request body. When using `Content-Type: application/json` for DELETE requests, if an error occurs, use `text/plain` instead. ```bash theme={null} x-api-key: {{YOUR_API_KEY}} Content-Type: text/plain ``` ## Token Deletion Types 1. tokenId specified deletion * Delete specific tokenId (maximum 500 per request) 2. Time-based N deletion * Delete N tokens based on submission order and count (maximum 5,000 per request) ## Request Parameters ### Request Body Array of token IDs to delete (maximum 500) **Token ID format:** * **Length**: 8 Byte \~ 64 Byte * **Allowed characters**: Letters (a-z, A-Z), numbers (0-9), hyphens (-), underscores (\_), periods (.) * **Restrictions**: No spaces, tabs, or newline characters * **Start/End**: Must start and end with letters or numbers only Number of tokens to delete (maximum 5000) * `asc`: Ascending order * `desc`: Descending order ```bash tokenId specified deletion cURL example theme={null} curl -X DELETE 'https://rest-api.argosidentity.com/v3/submission/tokens' \ -H 'x-api-key: YOUR_API_KEY' \ -H 'Content-Type: text/plain' \ -d '{ "tokenId": [ "user001a", "api.key.01", "token-123-abc", "session_data_01" ] }' ``` ```bash Time-based N token deletion cURL example theme={null} curl -X DELETE 'https://rest-api.argosidentity.com/v3/submission/tokens' \ -H 'x-api-key: YOUR_API_KEY' \ -H 'Content-Type: text/plain' \ -d '{ "count": 5000, "order": "desc" }' ``` ## Response ### Success Response (200) Operation success status Operation result message Summary information Total number of tokens submitted Number of tokens successfully deleted Number of non-existent tokens Number of tokens that failed to delete Detailed information (included only when there are failures or non-existent tokens) List of non-existent tokens List of tokens that failed to delete Token ID that failed to delete Deletion failure code Deletion failure message Operation success status Operation result message Summary information Number of tokens successfully deleted Number of tokens that failed to delete ```json tokenId specified deletion complete success theme={null} { "success": true, "message": "Successfully deleted 3 tokens", "summary": { "totalSubmitted": 3, "deleted": 3, "notFound": 0, "failed": 0 } } ``` ```json tokenId specified deletion partial success theme={null} { "success": false, "message": "Successfully deleted 1 tokens", "summary": { "totalSubmitted": 3, "deleted": 1, "notFound": 1, "failed": 1 }, "details": { "notFound": ["nonexistent1"], "failed": [ { "tokenId": "problematic-token", "error": "Delete_failed", "message": "Delete operation failed" } ] } } ``` ```json Time-based token deletion theme={null} { "success": true, "message": "Successfully deleted 10 tokens", "summary": { "deleted": 10, "failed": 0 } } ``` ### Error Response (400/500) Error code Error message ```json Token not found theme={null} { "errorCode": "token_not_found", "errorMessage": "Token not found." } ``` ## Token Policy ### Limitations **Request limit**: Maximum 5,000 token IDs per request **Pool limit**: Maximum 100,000 tokens managed per PID ### Partial Handling DELETE requests are processed partially for token IDs. Token IDs that do not exist in the pool are indicated in the 'notFound' field of the response, and only existing token IDs are deleted. **Example:** * Token IDs existing in pool: `tokenA`, `tokenB`, `tokenC` * DELETE request: `tokenA`, `tokenC`, `tokenD` * Pool after request completion: `tokenB` * Response details.notFound: \[`tokenD`] ## Security Considerations ### Complete Data Deletion Tokens deleted in private mode are completely removed in an encrypted state and cannot be recovered. * **Secure deletion**: Complete removal from database * **Encryption processing**: AES-256/GCM-256 encryption applied to deletion process as well * **Audit logs**: Deletion operation records maintained (excluding token contents) ### Access Control Deletion permissions are controlled through API keys. Special care is required in API key management. ## Error Codes ### Common Errors | Error Code | HTTP Status | Description | | -------------------------- | ----------- | ---------------------------------------- | | invalid\_payload | 400 | Missing request payload or format error | | invalid\_path | 400 | Unsupported HTTP method | | invalid\_project | 400 | Missing project ID or invalid API key | | invalid\_query\_parameters | 400 | Missing query parameters or format error | | invalid\_order | 400 | Query parameter order format error | | internal\_server\_error | 500 | Internal server error | ### Token Related Errors | Error Code | HTTP Status | Description | | ------------------------------- | ----------- | ------------------------------------------------------ | | invalid\_token\_id | 400 | Missing token ID, empty value, or not an array | | invalid\_token\_id\_format | 400 | Token ID format rule violation | | invalid\_token\_id\_type | 400 | Token ID is not a string | | invalid\_token\_id\_length | 400 | Token ID length outside 8-64 character range | | invalid\_token\_id\_whitespace | 400 | Token ID contains whitespace characters | | invalid\_token\_id\_characters | 400 | Token ID contains disallowed characters | | invalid\_token\_id\_start | 400 | Token ID does not start with letter/number | | invalid\_token\_id\_end | 400 | Token ID does not end with letter/number | | request\_token\_limit\_exceeded | 400 | Request token count limit exceeded (500) | | token\_limit\_exceeded | 400 | Project token total count limit exceeded (100,000) | | token\_id\_not\_found | 400 | Requested token does not exist in pool | | token\_id\_details\_not\_found | 400 | Token details retrieval failed | | delete\_token\_limit\_exceeded | 400 | Time-based bulk deletion request count exceeded (5000) | ## Usage Examples Verify if tokens exist before deletion. ```bash theme={null} curl -X GET 'https://rest-api.argosidentity.com/v3/submission/tokens?tokenId=user001a' \ -H 'x-api-key: YOUR_API_KEY' ``` If the token exists, detailed information will be returned. Delete the verified tokens. Types: token specified deletion, time-based token deletion ```bash theme={null} curl -X DELETE 'https://rest-api.argosidentity.com/v3/submission/tokens' \ -H 'x-api-key: YOUR_API_KEY' \ -H 'Content-Type: text/plain' \ -d '{"tokenId": ["user001a", "api.key.01"]}' ``` ```bash theme={null} curl -X DELETE 'https://rest-api.argosidentity.com/v3/submission/tokens' \ -H 'x-api-key: YOUR_API_KEY' \ -H 'Content-Type: text/plain' \ -d '{"count": 5000, "order": "asc"}' ``` Deletion is executed immediately and cannot be undone. Verify the deletion results in the response. You can check the number of successfully deleted tokens in the `summary.deleted` field. During bulk deletion, even if non-existent tokens are included, only existing tokens are selectively deleted. You can check the list of non-existent tokens in `details.notFound`. **Content-Type Notice**: For DELETE requests, when using `Content-Type: application/json` causes an error, set the header to `text/plain` instead.