Uhmmm. It’s debatable. I do see the value in resetting that. But then to actually implement it, you need to store the the access / refresh tokens of the social provider in the db and then use those to revoke access (if the social provider has such an API)