server/handlers/logout.go

package handlers

import (
	"encoding/json"
	"net/http"
	"strings"

	"github.com/gin-gonic/gin"
	log "github.com/sirupsen/logrus"

	"github.com/authorizerdev/authorizer/server/cookie"
	"github.com/authorizerdev/authorizer/server/crypto"
	"github.com/authorizerdev/authorizer/server/memorystore"
	"github.com/authorizerdev/authorizer/server/token"
)

// Handler to logout user
func LogoutHandler() gin.HandlerFunc {
	return func(gc *gin.Context) {
		redirectURL := strings.TrimSpace(gc.Query("redirect_uri"))
		// get fingerprint hash
		fingerprintHash, err := cookie.GetSession(gc)
		if err != nil {
			log.Debug("Failed to get session: ", err)
			gc.JSON(http.StatusUnauthorized, gin.H{
				"error": err.Error(),
			})
			return
		}

		decryptedFingerPrint, err := crypto.DecryptAES(fingerprintHash)
		if err != nil {
			log.Debug("Failed to decrypt fingerprint: ", err)
			gc.JSON(http.StatusUnauthorized, gin.H{
				"error": err.Error(),
			})
			return
		}

		var sessionData token.SessionData
		err = json.Unmarshal([]byte(decryptedFingerPrint), &sessionData)
		if err != nil {
			log.Debug("Failed to decrypt fingerprint: ", err)
			gc.JSON(http.StatusUnauthorized, gin.H{
				"error": err.Error(),
			})
			return
		}

		userID := sessionData.Subject
		loginMethod := sessionData.LoginMethod
		sessionToken := userID
		if loginMethod != "" {
			sessionToken = loginMethod + ":" + userID
		}

		memorystore.Provider.DeleteUserSession(sessionToken, sessionData.Nonce)
		cookie.DeleteSession(gc)

		if redirectURL != "" {
			gc.Redirect(http.StatusFound, redirectURL)
		} else {
			gc.JSON(http.StatusOK, gin.H{
				"message": "Logged out successfully",
			})
		}
	}
}
feat: add userinfo + logout 2022-03-04 00:36:27 +05:30			`package handlers`

			`import (`
fix: user session access 2022-06-12 00:27:21 +05:30			`"encoding/json"`
feat: add userinfo + logout 2022-03-04 00:36:27 +05:30			`"net/http"`
fix: add redirect url to logout 2022-03-08 21:32:42 +05:30			`"strings"`
feat: add userinfo + logout 2022-03-04 00:36:27 +05:30
feat: add logs for http handlers 2022-05-23 11:52:51 +05:30			`"github.com/gin-gonic/gin"`
			`log "github.com/sirupsen/logrus"`

feat: add userinfo + logout 2022-03-04 00:36:27 +05:30			`"github.com/authorizerdev/authorizer/server/cookie"`
			`"github.com/authorizerdev/authorizer/server/crypto"`
fix: move sessionstore -> memstore 2022-05-27 23:20:38 +05:30			`"github.com/authorizerdev/authorizer/server/memorystore"`
fix: user session access 2022-06-12 00:27:21 +05:30			`"github.com/authorizerdev/authorizer/server/token"`
feat: add userinfo + logout 2022-03-04 00:36:27 +05:30			`)`

feat: add revoke mutation + handler 2022-03-08 18:49:42 +05:30			`// Handler to logout user`
feat: add userinfo + logout 2022-03-04 00:36:27 +05:30			`func LogoutHandler() gin.HandlerFunc {`
			`return func(gc *gin.Context) {`
fix: magic link login 2022-03-08 22:41:33 +05:30			`redirectURL := strings.TrimSpace(gc.Query("redirect_uri"))`
feat: add userinfo + logout 2022-03-04 00:36:27 +05:30			`// get fingerprint hash`
			`fingerprintHash, err := cookie.GetSession(gc)`
			`if err != nil {`
fix: format logs 2022-05-25 12:30:22 +05:30			`log.Debug("Failed to get session: ", err)`
feat: add userinfo + logout 2022-03-04 00:36:27 +05:30			`gc.JSON(http.StatusUnauthorized, gin.H{`
			`"error": err.Error(),`
			`})`
			`return`
			`}`

			`decryptedFingerPrint, err := crypto.DecryptAES(fingerprintHash)`
			`if err != nil {`
fix: format logs 2022-05-25 12:30:22 +05:30			`log.Debug("Failed to decrypt fingerprint: ", err)`
feat: add userinfo + logout 2022-03-04 00:36:27 +05:30			`gc.JSON(http.StatusUnauthorized, gin.H{`
			`"error": err.Error(),`
			`})`
			`return`
			`}`

fix: user session access 2022-06-12 00:27:21 +05:30			`var sessionData token.SessionData`
			`err = json.Unmarshal([]byte(decryptedFingerPrint), &sessionData)`
fix: move sessionstore -> memstore 2022-05-27 23:20:38 +05:30			`if err != nil {`
fix: user session access 2022-06-12 00:27:21 +05:30			`log.Debug("Failed to decrypt fingerprint: ", err)`
			`gc.JSON(http.StatusUnauthorized, gin.H{`
			`"error": err.Error(),`
			`})`
			`return`
fix: move sessionstore -> memstore 2022-05-27 23:20:38 +05:30			`}`
fix: user session access 2022-06-12 00:27:21 +05:30
fix: session storage 2023-04-08 13:06:15 +05:30			`userID := sessionData.Subject`
			`loginMethod := sessionData.LoginMethod`
			`sessionToken := userID`
			`if loginMethod != "" {`
			`sessionToken = loginMethod + ":" + userID`
			`}`

			`memorystore.Provider.DeleteUserSession(sessionToken, sessionData.Nonce)`
feat: add userinfo + logout 2022-03-04 00:36:27 +05:30			`cookie.DeleteSession(gc)`

fix: add redirect url to logout 2022-03-08 21:32:42 +05:30			`if redirectURL != "" {`
fix: magic link login 2022-03-08 22:41:33 +05:30			`gc.Redirect(http.StatusFound, redirectURL)`
fix: add redirect url to logout 2022-03-08 21:32:42 +05:30			`} else {`
			`gc.JSON(http.StatusOK, gin.H{`
			`"message": "Logged out successfully",`
			`})`
			`}`
feat: add userinfo + logout 2022-03-04 00:36:27 +05:30			`}`
			`}`