post https://{pointofcontact}/oauth2/revoke
Invalidate a given token. Notifying the authorization server that the token is
no longer needed allows the authorization server to clean up data associated with
that token (e.g., session data) and the underlying authorization grant.