sequenceDiagram
    participant Admin as Admin Web
    participant API as Widget API
    participant DB as DynamoDB
    
    Admin->>API: POST /admin/users/logout<br/>Authorization: Bearer {token}
    API->>API: Decode JWT token<br/>(get expiration time)
    API->>DB: Put item vào token_blacklist table<br/>(token, expires_at [TTL])
    DB-->>API: Success
    API-->>Admin: Logout successful (200)
    
    Note over Admin: Xóa token khỏi localStorage
    
    Note over Admin,DB: Token sẽ tự động bị xóa<br/>khi expires_at đến (DynamoDB TTL)