diff options
Diffstat (limited to 'ui/logout.go')
-rw-r--r-- | ui/logout.go | 43 |
1 files changed, 43 insertions, 0 deletions
diff --git a/ui/logout.go b/ui/logout.go new file mode 100644 index 0000000..2946d1a --- /dev/null +++ b/ui/logout.go @@ -0,0 +1,43 @@ +// Copyright 2018 Frédéric Guillot. All rights reserved. +// Use of this source code is governed by the Apache 2.0 +// license that can be found in the LICENSE file. + +package ui + +import ( + "net/http" + + "github.com/miniflux/miniflux/http/context" + "github.com/miniflux/miniflux/http/cookie" + "github.com/miniflux/miniflux/http/response" + "github.com/miniflux/miniflux/http/response/html" + "github.com/miniflux/miniflux/http/route" + "github.com/miniflux/miniflux/logger" + "github.com/miniflux/miniflux/ui/session" +) + +// Logout destroy the session and redirects the user to the login page. +func (c *Controller) Logout(w http.ResponseWriter, r *http.Request) { + ctx := context.New(r) + sess := session.New(c.store, ctx) + + user, err := c.store.UserByID(ctx.UserID()) + if err != nil { + html.ServerError(w, err) + return + } + + sess.SetLanguage(user.Language) + + if err := c.store.RemoveUserSessionByToken(user.ID, ctx.UserSessionToken()); err != nil { + logger.Error("[Controller:Logout] %v", err) + } + + http.SetCookie(w, cookie.Expired( + cookie.CookieUserSessionID, + c.cfg.IsHTTPS, + c.cfg.BasePath(), + )) + + response.Redirect(w, r, route.Path(c.router, "login")) +} |