Revoke oauth token on signout

2025-05-09 13:28:44 +00:00 · 2023-10-02 06:44:26 +00:00 · 2023-10-02 06:44:26 +00:00 · b83a00aa2c
commit b83a00aa2c
parent df031d5edd
3 changed files with 18 additions and 0 deletions
--- a/service/service.go
+++ b/service/service.go
@ -902,6 +902,10 @@ func (s *service) Signin(c *client, code string) (err error) {
 	return c.setSession(c.s)
 }

+func (s *service) Signout(c *client) (err error) {
+	return c.RevokeToken(c.ctx)
+}
+
 func (s *service) Post(c *client, content string, replyToID string,
 	format string, visibility string, isNSFW bool,
 	files []*multipart.FileHeader) (id string, err error) {
--- a/service/transport.go
+++ b/service/transport.go
@ -676,6 +676,10 @@ func NewHandler(s *service, verbose bool, staticDir string) http.Handler {
 	}, CSRF, HTML)

 	signout := handle(func(c *client) error {
+		err := s.Signout(c)
+		if err != nil {
+			return err
+		}
 		c.unsetSession()
 		c.redirect("/")
 		return nil