62 lines
1.5 KiB
Go
62 lines
1.5 KiB
Go
package handlers
|
|
|
|
import (
|
|
"encoding/json"
|
|
"net/http"
|
|
"strings"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
log "github.com/sirupsen/logrus"
|
|
|
|
"github.com/authorizerdev/authorizer/server/cookie"
|
|
"github.com/authorizerdev/authorizer/server/crypto"
|
|
"github.com/authorizerdev/authorizer/server/memorystore"
|
|
"github.com/authorizerdev/authorizer/server/token"
|
|
)
|
|
|
|
// Handler to logout user
|
|
func LogoutHandler() gin.HandlerFunc {
|
|
return func(gc *gin.Context) {
|
|
redirectURL := strings.TrimSpace(gc.Query("redirect_uri"))
|
|
// get fingerprint hash
|
|
fingerprintHash, err := cookie.GetSession(gc)
|
|
if err != nil {
|
|
log.Debug("Failed to get session: ", err)
|
|
gc.JSON(http.StatusUnauthorized, gin.H{
|
|
"error": err.Error(),
|
|
})
|
|
return
|
|
}
|
|
|
|
decryptedFingerPrint, err := crypto.DecryptAES(fingerprintHash)
|
|
if err != nil {
|
|
log.Debug("Failed to decrypt fingerprint: ", err)
|
|
gc.JSON(http.StatusUnauthorized, gin.H{
|
|
"error": err.Error(),
|
|
})
|
|
return
|
|
}
|
|
|
|
var sessionData token.SessionData
|
|
err = json.Unmarshal([]byte(decryptedFingerPrint), &sessionData)
|
|
if err != nil {
|
|
log.Debug("Failed to decrypt fingerprint: ", err)
|
|
gc.JSON(http.StatusUnauthorized, gin.H{
|
|
"error": err.Error(),
|
|
})
|
|
return
|
|
}
|
|
|
|
memorystore.Provider.DeleteUserSession(sessionData.Subject, sessionData.Nonce)
|
|
cookie.DeleteSession(gc)
|
|
|
|
if redirectURL != "" {
|
|
gc.Redirect(http.StatusFound, redirectURL)
|
|
} else {
|
|
gc.JSON(http.StatusOK, gin.H{
|
|
"message": "Logged out successfully",
|
|
})
|
|
}
|
|
}
|
|
}
|