BradNut/node-auth
1
0
Fork 0
mirror of https://github.com/BradNut/node-auth synced 2025-09-08 17:40:17 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Fixed logout.

Browse source
This commit is contained in:
Bradley Shellnut 2021-04-26 13:23:05 -07:00
parent 6c282c734c
commit 1f9d1531a2
1 changed files with 10 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

14
api/src/accounts/logUserOut.js
View file

@ -1,6 +1,5 @@
import jwt from 'jsonwebtoken' import jwt from 'jsonwebtoken'
const { ROOT_DOMAIN, JWT_SIGNATURE } = process.env
const JWTSignature = process.env.JWT_SIGNATURE
export async function logUserOut(request, reply) { export async function logUserOut(request, reply) {
try { try {
@ -9,12 +8,19 @@ export async function logUserOut(request, reply) {
if (request?.cookies?.refreshToken) { if (request?.cookies?.refreshToken) {
const { refreshToken } = request.cookies const { refreshToken } = request.cookies
// Decode refresh token // Decode refresh token
const { sessionToken } = jwt.verify(refreshToken, JWTSignature) const { sessionToken } = jwt.verify(refreshToken, JWT_SIGNATURE)
// Delete database record for session // Delete database record for session
await session.deleteOne({ sessionToken }) await session.deleteOne({ sessionToken })
} }
const cookieOptions = {
path: '/',
domain: ROOT_DOMAIN,
httpOnly: true,
secure: true,
}
// Remove cookies // Remove cookies
reply.clearCookie('refreshToken').clearCookie('accessToken') reply.clearCookie('refreshToken', cookieOptions).clearCookie('accessToken', cookieOptions)
} catch (e) { } catch (e) {
console.error(e); console.error(e);
} }