When you use a dApp, the smart contract often needs permission to move tokens from your address. That permission comes from an on-chain token approval (also called a token allowance). Approvals are not the same as "connected" sessions — they are explicit instructions stored in the token contract.
If you approve an unlimited allowance, a contract can move up to that allowance without asking again. Scary? It can be. I once approved a large allowance during a hurried swap and later had to revoke it. That experience taught me to check approvals regularly.
This guide explains how to revoke token approvals and manage allowances with Coinbase Wallet, practical steps you can take, and the trade-offs (time, gas fees, and security).
Disconnecting a dApp in your wallet severs the session between your wallet address and the site. It stops the site from starting new interactions. But disconnecting does not change on-chain allowances already granted. Revoking a token approval is an on-chain transaction that sets the allowance for a spender address back to zero (or a smaller amount).
Short sentence. Know the distinction.
Coinbase Wallet includes a view of connected dApps and sessions so you can see which sites have access to your address. Use that to tidy up old connections after a session ends. (It’s a good first step.)
However, token allowances live on-chain in ERC-20 contracts and must usually be changed with a transaction. Coinbase Wallet's connection list helps with surface-level hygiene but does not automatically revoke approvals for every token/spender pair. So you often need an on-chain revocation step to fully remove the risk.
If you want a walkthrough on finding your wallet address inside the app, see Find Coinbase Wallet address. And check Token management for token visibility tips.
Below are two practical methods: a quick in-app disconnect and a full on-chain revoke. I use both depending on the urgency.
This prevents future web sessions, but it will not change the token allowance stored in a token contract. So follow up with an on-chain revoke if you ever approved spend limits greater than you intended.
This method actually changes the token allowance. It costs gas, but it removes the on-chain permission.
Step-by-step (generalized):
But be careful. Double-check the spender address before signing. And never connect your wallet to random sites without validating the URL.
| Method | Speed | Gas cost | What it revokes | Best for |
|---|---|---|---|---|
| In-app disconnect | Seconds | Free | Stops new sessions (no on-chain change) | Quick cleanup after using a dApp |
| On-chain revoke via approval-checker | Minutes (plus block time) | Yes (gas) | Sets ERC-20 allowance to 0 or custom value | Removes risk from unlimited allowances |
| Hardware-signed revoke (wallet + approvals tool) | Minutes | Yes (gas) | Same as on-chain revoke, but signed on HW | Large balances or high-risk approvals |
![Image: placeholder for connected dApps and approval list screenshot]
I believe regular housekeeping saves headaches. In my experience, a five-minute cleanup every few weeks prevents surprises.
If you operate on a Layer 2, revocation gas costs will usually be lower. (That makes batch maintenance practical.) Account abstraction and smart-contract wallets offer additional tools — like session keys and limited allowances — that reduce the need to frequently revoke permissions. But those are separate setups and may not be available for every user or wallet.
Who this guide helps:
Who should look elsewhere:
Q: Is it safe to keep crypto in a hot wallet?
A: Hot wallets are convenient for daily DeFi and swaps, but they trade off some security compared with cold storage. Keep small operational balances in hot wallets and larger sums on hardware wallets. See Coinbase Wallet security features for more.
Q: How do I revoke token approvals?
A: In short: disconnect the dApp in your wallet, then perform an on-chain revoke via an approval-checker or block explorer (connect with WalletConnect if needed). See the step-by-step section above.
Q: How do I revoke an unlimited allowance in Coinbase Wallet?
A: The process is the same as a normal revoke: identify the approved spender, connect to a trusted approval manager, and set the allowance to 0. The wallet will prompt you to sign the transaction and pay gas.
Q: What happens if I lose my phone?
A: If you have your seed phrase backed up safely, you can restore your wallet and then run approvals cleanup. Don’t store your seed phrase in cloud notes without encryption. See Backup and recovery and Recover or delete Coinbase Wallet.
Revoking token approvals is simple in concept but requires an on-chain step for full effect. Start with disconnecting stale dApps inside Coinbase Wallet, then use a trusted approval-checker and WalletConnect to clear or reduce allowances (expect to pay gas). And yes, schedule the cleanup — it pays off.
Want guided walkthroughs? Check related resources: Token management guide, Connecting dApps, and WalletConnect setup.
If you found a suspicious approval or need help reading a transaction, follow the verification tips in Privacy and phishing before signing anything.
Stay practical. Keep some funds accessible for DeFi, and move the rest to safer custody when you’re done.