Manage active portal connections

This example shows how to manage active user sessions in ONLYOFFICE DocSpace. You can retrieve active sessions, log out all users except the current one, terminate a specific session, or revoke all sessions for a particular user.

Before you start

Replace https://yourportal.onlyoffice.com and YOUR_API_KEY with your actual DocSpace portal URL and API key. Ensure you have the necessary data and permissions to perform migration operations.
Before you can make requests to the API, you need to authenticate. Check out the Personal access tokens page to learn how to obtain and use access tokens.

Full example

Node.js
Python

// Set API base URL
const API_HOST = 'https://yourportal.onlyoffice.com';
const API_KEY = 'your_api_key';

// Headers with API key for authentication
const HEADERS = {
  Authorization: `Bearer ${API_KEY}`,
  Accept: 'application/json',
  'Content-Type': 'application/json',
};

// Step 1: Retrieve all active portal connections
function getAllActiveConnections() {
  const url = `${API_HOST}/api/2.0/security/activeconnections`;
  return fetch(url, { method: 'GET', headers: HEADERS })
    .then((res) => {
      if (res.status === 200) return res.json();
      return res.text().then((t) => {
        console.log(`Active connections retrieval failed. Status code: ${res.status}, Message: ${t}`);
        return null;
      });
    })
    .then((data) => {
      if (!data) return null;
      console.log(`Active connections retrieved successfully: ${JSON.stringify(data)}`);
      return data;
    })
    .catch((err) => {
      console.log(`Active connections retrieval error: ${err.message}`);
      return null;
    });
}

// Step 2: Log out all sessions except the current one
function logOutAllExceptCurrent() {
  const url = `${API_HOST}/api/2.0/security/activeconnections/logoutallexceptthis`;
  return fetch(url, { method: 'PUT', headers: HEADERS })
    .then((res) => {
      if (res.status === 200) return res.json();
      return res.text().then((t) => {
        console.log(`Logout-all-except-current failed. Status code: ${res.status}, Message: ${t}`);
        return null;
      });
    })
    .then((data) => {
      if (!data) return null;
      console.log(`Logged out all connections except the current one: ${JSON.stringify(data)}`);
      return data;
    })
    .catch((err) => {
      console.log(`Logout-all-except-current error: ${err.message}`);
      return null;
    });
}

// Step 3: Log out a specific session by its login event ID
function logOutActiveConnection(loginEventId) {
  const url = `${API_HOST}/api/2.0/security/activeconnections/logout/${loginEventId}`;
  return fetch(url, { method: 'PUT', headers: HEADERS })
    .then((res) => {
      if (res.status === 200) return res.json();
      return res.text().then((t) => {
        console.log(`Logout connection ${loginEventId} failed. Status code: ${res.status}, Message: ${t}`);
        return null;
      });
    })
    .then((data) => {
      if (!data) return null;
      console.log(`Logged out connection ${loginEventId}: ${JSON.stringify(data)}`);
      return data;
    })
    .catch((err) => {
      console.log(`Logout connection ${loginEventId} error: ${err.message}`);
      return null;
    });
}

// Step 4: Log out all sessions for a specific user
function logOutAllActiveConnectionsForUser(userId) {
  const url = `${API_HOST}/api/2.0/security/activeconnections/logoutall/${userId}`;
  return fetch(url, { method: 'PUT', headers: HEADERS })
    .then((res) => {
      if (res.status === 200) return res.json();
      return res.text().then((t) => {
        console.log(`Logout all for user ${userId} failed. Status code: ${res.status}, Message: ${t}`);
        return null;
      });
    })
    .then((data) => {
      if (!data) return null;
      console.log(`Logged out all connections for user ${userId}: ${JSON.stringify(data)}`);
      return data;
    })
    .catch((err) => {
      console.log(`Logout all for user ${userId} error: ${err.message}`);
      return null;
    });
}

// Example usage
console.log('\nRetrieving all active connections:');
getAllActiveConnections().then((activeData) => {
  if (!activeData) {
    console.log('No active connections found.');
    return;
  }

  const items = activeData.response?.items || [];
  if (!items.length) {
    console.log('Active connections list is empty.');
    return;
  }

  console.log('\nLogging out all connections except the current one:');
  logOutAllExceptCurrent()
    .then(() => {
      const firstConnectionId = items[0].id;
      console.log(`\nLogging out the connection with ID ${firstConnectionId}:`);
      return logOutActiveConnection(firstConnectionId);
    })
    .then(() => {
      const userId = items[0].userId;
      console.log(`\nLogging out all connections for user ID ${userId}:`);
      return logOutAllActiveConnectionsForUser(userId);
    });
});

import requests

# Set API base URL
API_HOST = 'https://yourportal.onlyoffice.com'
API_KEY = 'your_api_key'

# Headers with API key for authentication
HEADERS = {
  'Authorization': f'Bearer {API_KEY}',
  'Accept': 'application/json',
  'Content-Type': 'application/json'
}

# Step 1: Retrieve all active portal connections
def get_all_active_connections():
  url = f'{API_HOST}/api/2.0/security/activeconnections'
  response = requests.get(url, headers=HEADERS)

  if response.status_code == 200:
    active_connections = response.json()
    print(f"Active connections retrieved successfully: {active_connections}")
    return active_connections
  else:
    print(f"Active connections retrieval failed. Status code: {response.status_code}, Message: {response.text}")
    return None

# Step 2: Log out all sessions except the current one
def log_out_all_except_current():
  url = f'{API_HOST}/api/2.0/security/activeconnections/logoutallexceptthis'
  response = requests.put(url, headers=HEADERS)

  if response.status_code == 200:
    result = response.json()
    print(f"Logged out all connections except the current one: {result}")
    return result
  else:
    print(f"Logout-all-except-current failed. Status code: {response.status_code}, Message: {response.text}")
    return None

# Step 3: Log out a specific session by its login event ID
def log_out_active_connection(login_event_id):
  url = f'{API_HOST}/api/2.0/security/activeconnections/logout/{login_event_id}'
  response = requests.put(url, headers=HEADERS)

  if response.status_code == 200:
    result = response.json()
    print(f"Logged out connection {login_event_id}: {result}")
    return result
  else:
    print(f"Logout connection {login_event_id} failed. Status code: {response.status_code}, Message: {response.text}")
    return None

# Step 4: Log out all sessions for a specific user
def log_out_all_active_connections_for_user(user_id):
  url = f'{API_HOST}/api/2.0/security/activeconnections/logoutall/{user_id}'
  response = requests.put(url, headers=HEADERS)

  if response.status_code == 200:
    result = response.json()
    print(f"Logged out all connections for user {user_id}: {result}")
    return result
  else:
    print(f"Logout all for user {user_id} failed. Status code: {response.status_code}, Message: {response.text}")
    return None

# Example usage
if __name__ == '__main__':
  print("\nRetrieving all active connections:")
  active_data = get_all_active_connections()

  if not active_data:
    print("No active connections found.")
    exit()

  items = active_data.get('response', {}).get('items', [])
  if not items:
    print("Active connections list is empty.")
    exit()

  print("\nLogging out all connections except the current one:")
  log_out_all_except_current()

  first_connection_id = items[0].get('id')
  print(f"\nLogging out the connection with ID {first_connection_id}:")
  log_out_active_connection(first_connection_id)

  user_id = items[0].get('userId')
  print(f"\nLogging out all connections for user ID {user_id}:")
  log_out_all_active_connections_for_user(user_id)

Step 1: Retrieve all active connections

Sends a GET request to /api/2.0/security/activeconnections.

It returns a list of active sessions on the portal.

Node.js
Python

function getAllActiveConnections() {
  const url = `${API_HOST}/api/2.0/security/activeconnections`;
  return fetch(url, { method: 'GET', headers: HEADERS })
    .then((res) => {
      if (res.status === 200) return res.json();
      return res.text().then((t) => {
        console.log(`Active connections retrieval failed. Status code: ${res.status}, Message: ${t}`);
        return null;
      });
    })
    .then((data) => {
      if (!data) return null;
      console.log(`Active connections retrieved successfully: ${JSON.stringify(data)}`);
      return data;
    })
    .catch((err) => {
      console.log(`Active connections retrieval error: ${err.message}`);
      return null;
    });
}

def get_all_active_connections():
url = f'{API_HOST}/api/2.0/security/activeconnections'
response = requests.get(url, headers=HEADERS)

if response.status_code == 200:
  active_connections = response.json()
  print(f"Active connections retrieved successfully: {active_connections}")
  return active_connections
else:
  print(f"Active connections retrieval failed. Status code: {response.status_code}, Message: {response.text}")
  return None

Step 2: Log out all sessions except the current one

Sends a PUT request to /api/2.0/security/activeconnections/logoutallexceptthis.

It terminates all sessions except the current API session.

Node.js
Python

function logOutAllExceptCurrent() {
  const url = `${API_HOST}/api/2.0/security/activeconnections/logoutallexceptthis`;
  return fetch(url, { method: 'PUT', headers: HEADERS })
    .then((res) => {
      if (res.status === 200) return res.json();
      return res.text().then((t) => {
        console.log(`Logout-all-except-current failed. Status code: ${res.status}, Message: ${t}`);
        return null;
      });
    })
    .then((data) => {
      if (!data) return null;
      console.log(`Logged out all connections except the current one: ${JSON.stringify(data)}`);
      return data;
    })
    .catch((err) => {
      console.log(`Logout-all-except-current error: ${err.message}`);
      return null;
    });
}

def log_out_all_except_current():
  url = f'{API_HOST}/api/2.0/security/activeconnections/logoutallexceptthis'
  response = requests.put(url, headers=HEADERS)

  if response.status_code == 200:
    result = response.json()
    print(f"Logged out all connections except the current one: {result}")
    return result
  else:
    print(f"Logout-all-except-current failed. Status code: {response.status_code}, Message: {response.text}")
    return None

Step 3: Log out a specific session

Sends a PUT request to /api/2.0/security/activeconnections/logout/:loginEventId.

It logs out a session by its login event ID.

Node.js
Python

function logOutActiveConnection(loginEventId) {
  const url = `${API_HOST}/api/2.0/security/activeconnections/logout/${loginEventId}`;
  return fetch(url, { method: 'PUT', headers: HEADERS })
    .then((res) => {
      if (res.status === 200) return res.json();
      return res.text().then((t) => {
        console.log(`Logout connection ${loginEventId} failed. Status code: ${res.status}, Message: ${t}`);
        return null;
      });
    })
    .then((data) => {
      if (!data) return null;
      console.log(`Logged out connection ${loginEventId}: ${JSON.stringify(data)}`);
      return data;
    })
    .catch((err) => {
      console.log(`Logout connection ${loginEventId} error: ${err.message}`);
      return null;
    });
}

def log_out_active_connection(login_event_id):
  url = f'{API_HOST}/api/2.0/security/activeconnections/logout/{login_event_id}'
  response = requests.put(url, headers=HEADERS)

  if response.status_code == 200:
    result = response.json()
    print(f"Logged out connection {login_event_id}: {result}")
    return result
  else:
    print(f"Logout connection {login_event_id} failed. Status code: {response.status_code}, Message: {response.text}")
    return None

Step 4: Log out all sessions for a specific user

Sends a PUT request to /api/2.0/security/activeconnections/logoutall/:userId.

It logs out all active sessions for the provided user ID.

Node.js
Python

function logOutAllActiveConnectionsForUser(userId) {
  const url = `${API_HOST}/api/2.0/security/activeconnections/logoutall/${userId}`;
  return fetch(url, { method: 'PUT', headers: HEADERS })
    .then((res) => {
      if (res.status === 200) return res.json();
      return res.text().then((t) => {
        console.log(`Logout all for user ${userId} failed. Status code: ${res.status}, Message: ${t}`);
        return null;
      });
    })
    .then((data) => {
      if (!data) return null;
      console.log(`Logged out all connections for user ${userId}: ${JSON.stringify(data)}`);
      return data;
    })
    .catch((err) => {
      console.log(`Logout all for user ${userId} error: ${err.message}`);
      return null;
    });
}

def log_out_all_active_connections_for_user(user_id):
  url = f'{API_HOST}/api/2.0/security/activeconnections/logoutall/{user_id}'
  response = requests.put(url, headers=HEADERS)

  if response.status_code == 200:
    result = response.json()
    print(f"Logged out all connections for user {user_id}: {result}")
    return result
  else:
    print(f"Logout all for user {user_id} failed. Status code: {response.status_code}, Message: {response.text}")
    return None

Before you start​

Step 1: Retrieve all active connections​

Step 2: Log out all sessions except the current one​

Step 3: Log out a specific session​

Step 4: Log out all sessions for a specific user​

Before you start

Step 1: Retrieve all active connections

Step 2: Log out all sessions except the current one

Step 3: Log out a specific session

Step 4: Log out all sessions for a specific user