I have tried both approaches, to revoke the token programmatically (and received a successful status of 200 while doing so), and revoking the account in iCloud settings by doing https://account.apple.com/account/manage > "Sign-In and Security" > "Sign in with Apple" > "Stop using Sign in with Apple". None of these result in the email (nor the fullName) being included in subsequent idTokens. It's such a shame that the API is not only unpredictable from a devX, but that we are forced to implement it when submitting an app that uses social logins. The inability to reliably retrieve even just an email (and name) is a huge pain, and the many forum posts should be a sign that this is something that needs to be improved on.