fosrl.pangolin/server/routers/auth/logout.ts

import { Request, Response, NextFunction } from "express";
import createHttpError from "http-errors";
import HttpCode from "@server/types/HttpCode";
import response from "@server/lib/response";
import logger from "@server/logger";
import {
    createBlankSessionTokenCookie,
    invalidateSession
} from "@server/auth/sessions/app";
import { verifySession } from "@server/auth/sessions/verifySession";
import config from "@server/lib/config";

export async function logout(
    req: Request,
    res: Response,
    next: NextFunction
): Promise<any> {
    const { user, session } = await verifySession(req);
    if (!user || !session) {
        if (config.getRawConfig().app.log_failed_attempts) {
            logger.info(
                `Log out failed because missing or invalid session. IP: ${req.ip}.`
            );
        }
        return next(
            createHttpError(
                HttpCode.BAD_REQUEST,
                "You must be logged in to sign out"
            )
        );
    }

    try {
        try {
            await invalidateSession(session.sessionId);
        } catch (error) {
            logger.error("Failed to invalidate session", error)
        }

        const isSecure = req.protocol === "https";
        res.setHeader("Set-Cookie", createBlankSessionTokenCookie(isSecure));

        return response<null>(res, {
            data: null,
            success: true,
            error: false,
            message: "Logged out successfully",
            status: HttpCode.OK
        });
    } catch (error) {
        logger.error(error);
        return next(
            createHttpError(HttpCode.INTERNAL_SERVER_ERROR, "Failed to log out")
        );
    }
}
added logout endpoint 2024-10-02 20:04:51 -04:00			`import { Request, Response, NextFunction } from "express";`
			`import createHttpError from "http-errors";`
			`import HttpCode from "@server/types/HttpCode";`
refactor and reorganize 2025-01-01 21:41:31 -05:00			`import response from "@server/lib/response";`
verify email workflow working 2024-10-04 23:14:40 -04:00			`import logger from "@server/logger";`
remove lucia 2024-10-13 17:13:47 -04:00			`import {`
			`createBlankSessionTokenCookie,`
refactor auth to work cross domain and with http resources closes #100 2025-01-26 14:42:02 -05:00			`invalidateSession`
refactor and reorganize 2025-01-01 21:41:31 -05:00			`} from "@server/auth/sessions/app";`
refactor auth to work cross domain and with http resources closes #100 2025-01-26 14:42:02 -05:00			`import { verifySession } from "@server/auth/sessions/verifySession";`
add failed auth logging 2025-01-27 22:43:32 -05:00			`import config from "@server/lib/config";`
added logout endpoint 2024-10-02 20:04:51 -04:00
			`export async function logout(`
			`req: Request,`
			`res: Response,`
fix issues from test deploy 2024-12-21 21:01:12 -05:00			`next: NextFunction`
added logout endpoint 2024-10-02 20:04:51 -04:00			`): Promise<any> {`
refactor auth to work cross domain and with http resources closes #100 2025-01-26 14:42:02 -05:00			`const { user, session } = await verifySession(req);`
			`if (!user \|\| !session) {`
add failed auth logging 2025-01-27 22:43:32 -05:00			`if (config.getRawConfig().app.log_failed_attempts) {`
			`logger.info(`
			`Log out failed because missing or invalid session. IP: ${req.ip}.`
			`);`
			`}`
added logout endpoint 2024-10-02 20:04:51 -04:00			`return next(`
			`createHttpError(`
			`HttpCode.BAD_REQUEST,`
fix issues from test deploy 2024-12-21 21:01:12 -05:00			`"You must be logged in to sign out"`
			`)`
added logout endpoint 2024-10-02 20:04:51 -04:00			`);`
			`}`

verify email workflow working 2024-10-04 23:14:40 -04:00			`try {`
allow logout to fail 2025-02-05 22:00:29 -05:00			`try {`
			`await invalidateSession(session.sessionId);`
			`} catch (error) {`
			`logger.error("Failed to invalidate session", error)`
			`}`

allow controlling cors from config and add cors middleware to traefik 2025-01-13 23:59:10 -05:00			`const isSecure = req.protocol === "https";`
			`res.setHeader("Set-Cookie", createBlankSessionTokenCookie(isSecure));`
added logout endpoint 2024-10-02 20:04:51 -04:00
verify email workflow working 2024-10-04 23:14:40 -04:00			`return response<null>(res, {`
			`data: null,`
			`success: true,`
			`error: false,`
			`message: "Logged out successfully",`
fix issues from test deploy 2024-12-21 21:01:12 -05:00			`status: HttpCode.OK`
verify email workflow working 2024-10-04 23:14:40 -04:00			`});`
			`} catch (error) {`
fix issues from test deploy 2024-12-21 21:01:12 -05:00			`logger.error(error);`
verify email workflow working 2024-10-04 23:14:40 -04:00			`return next(`
fix issues from test deploy 2024-12-21 21:01:12 -05:00			`createHttpError(HttpCode.INTERNAL_SERVER_ERROR, "Failed to log out")`
verify email workflow working 2024-10-04 23:14:40 -04:00			`);`
			`}`
added logout endpoint 2024-10-02 20:04:51 -04:00			`}`