From 60f0219e85a74e9a41c834179983d41689a3a9e3 Mon Sep 17 00:00:00 2001
From: Radical <radical@radical.fun>
Date: Sat, 31 May 2025 14:43:48 +0200
Subject: [PATCH] feat: add logout endpoint

---
 src/api/v1/auth/logout.rs | 31 +++++++++++++++++++++++++++++++
 src/api/v1/auth/mod.rs    |  2 ++
 2 files changed, 33 insertions(+)
 create mode 100644 src/api/v1/auth/logout.rs

diff --git a/src/api/v1/auth/logout.rs b/src/api/v1/auth/logout.rs
new file mode 100644
index 0000000..79b5c36
--- /dev/null
+++ b/src/api/v1/auth/logout.rs
@@ -0,0 +1,31 @@
+use actix_web::{HttpRequest, HttpResponse, post, web};
+use diesel::{ExpressionMethods, delete};
+use diesel_async::RunQueryDsl;
+
+use crate::{
+    Data,
+    error::Error,
+    schema::refresh_tokens::{self, dsl},
+};
+
+// TODO: Should maybe be a delete request?
+#[post("/logout")]
+pub async fn res(
+    req: HttpRequest,
+    data: web::Data<Data>,
+) -> Result<HttpResponse, Error> {
+    let mut refresh_token_cookie = req.cookie("refresh_token").ok_or(Error::Unauthorized("request has no refresh token".to_string()))?;
+
+    let refresh_token = String::from(refresh_token_cookie.value());
+
+    let mut conn = data.pool.get().await?;
+
+    delete(refresh_tokens::table)
+        .filter(dsl::token.eq(refresh_token))
+        .execute(&mut conn)
+        .await?;
+
+    refresh_token_cookie.make_removal();
+
+    Ok(HttpResponse::Ok().cookie(refresh_token_cookie).finish())
+}
diff --git a/src/api/v1/auth/mod.rs b/src/api/v1/auth/mod.rs
index d627a59..75a6b0b 100644
--- a/src/api/v1/auth/mod.rs
+++ b/src/api/v1/auth/mod.rs
@@ -9,6 +9,7 @@ use uuid::Uuid;
 use crate::{Conn, error::Error, schema::access_tokens::dsl};
 
 mod login;
+mod logout;
 mod refresh;
 mod register;
 mod reset_password;
@@ -24,6 +25,7 @@ pub fn web() -> Scope {
     web::scope("/auth")
         .service(register::res)
         .service(login::response)
+        .service(logout::res)
         .service(refresh::res)
         .service(revoke::res)
         .service(verify_email::get)