mirror of
https://github.com/pocket-id/pocket-id.git
synced 2026-07-17 00:09:53 +00:00
59 lines
1.4 KiB
Go
59 lines
1.4 KiB
Go
package oidc
|
|
|
|
import (
|
|
"log/slog"
|
|
"net/http"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/pocket-id/pocket-id/backend/internal/dto"
|
|
"github.com/pocket-id/pocket-id/backend/internal/utils/cookie"
|
|
)
|
|
|
|
type endSessionHandler struct {
|
|
endSessionService *endSessionService
|
|
baseURL string
|
|
}
|
|
|
|
func newEndSessionHandler(endSessionService *endSessionService, baseURL string) *endSessionHandler {
|
|
return &endSessionHandler{
|
|
endSessionService: endSessionService,
|
|
baseURL: baseURL,
|
|
}
|
|
}
|
|
|
|
func (h *endSessionHandler) endSession(c *gin.Context) {
|
|
input, err := bindEndSessionRequest(c)
|
|
if err != nil {
|
|
_ = c.Error(err)
|
|
return
|
|
}
|
|
|
|
callbackURL, err := h.endSessionService.endSession(c.Request.Context(), input, c.GetString("userID"))
|
|
if err != nil {
|
|
slog.WarnContext(c.Request.Context(), "Error getting logout callback URL, the user has to confirm the logout manually", "error", err)
|
|
c.Redirect(http.StatusFound, h.baseURL+"/logout")
|
|
return
|
|
}
|
|
|
|
cookie.AddAccessTokenCookie(c, 0, "")
|
|
if callbackURL == "" {
|
|
c.Redirect(http.StatusFound, h.baseURL+"/logout")
|
|
return
|
|
}
|
|
|
|
c.Redirect(http.StatusFound, appendStateToURL(callbackURL, input.State))
|
|
}
|
|
|
|
func bindEndSessionRequest(c *gin.Context) (dto.OidcLogoutDto, error) {
|
|
var input dto.OidcLogoutDto
|
|
|
|
switch c.Request.Method {
|
|
case http.MethodGet:
|
|
return input, c.ShouldBindQuery(&input)
|
|
case http.MethodPost:
|
|
return input, c.ShouldBind(&input)
|
|
default:
|
|
return input, nil
|
|
}
|
|
}
|