Skip to content
StraventaDocs

List the caller's own sessions

Returns all active refresh-token families scoped to the caller's user ID. The currently active session is flagged as `is_current: true`. IP values are SHA-256 hashed before storage.

GET
/v1/me/sessions

Returns all active refresh-token families scoped to the caller's user ID. The currently active session is flagged as is_current: true. IP values are SHA-256 hashed before storage.

Authorization

bearerAuth
AuthorizationBearer <token>

JWT Bearer access token. Clock skew tolerance is ±60 seconds.

In: header

Response Body

application/json

application/json

curl -X GET "https://example.com/v1/me/sessions"
{
  "sessions": [
    {
      "id": "018f1a2b-0001-7000-8000-000000000091",
      "user_agent": "Mozilla/5.0...",
      "ip_hash": "a3b4c5d6...",
      "last_used_at": "2026-01-15T09:00:00Z",
      "created_at": "2026-01-15T08:00:00Z",
      "is_current": true
    }
  ],
  "total": 1
}
{
  "error": "unauthenticated",
  "message": "missing or invalid bearer token",
  "request_id": "req_01abc123"
}

Was this page helpful?