findByUuid($uuid) : null; if (!$user) { Router::redirect('admin/users'); } $userId = (int) ($user['id'] ?? 0); $currentUserId = (int) ($_SESSION['user']['id'] ?? 0); $decision = $authorizationService->authorize(UserAuthorizationPolicy::ABILITY_ADMIN_USERS_API_TOKENS_MANAGE, [ 'actor_user_id' => $currentUserId, 'target_user_id' => $userId, ]); if (!$decision->isAllowed()) { Router::redirect('error/forbidden'); return; } $tokenId = (int) (requestInput()->bodyAll()['token_id'] ?? 0); if ($tokenId > 0) { $apiTokenService->revoke($tokenId); Flash::success(t('API token revoked'), "admin/users/edit/{$uuid}", 'api_token_revoked'); } Router::redirect("admin/users/edit/{$uuid}");