34 lines
883 B
Python
34 lines
883 B
Python
from fastapi import APIRouter, Depends, HTTPException
|
|
from core.database import fake_users_db
|
|
|
|
router = APIRouter()
|
|
|
|
@router.post("/logout")
|
|
async def logout_handler(
|
|
username: str,
|
|
db: Session = Depends(get_db),
|
|
token: str = Depends(oauth2_scheme)
|
|
):
|
|
"""Demo logout endpoint"""
|
|
user = fake_users_db.get(username)
|
|
if not user:
|
|
raise HTTPException(status_code=404, detail="User not found")
|
|
|
|
# Clear access token
|
|
access_tokens = user.get("access_tokens", [])
|
|
access_tokens = [t for t in access_tokens if t != token]
|
|
user["access_tokens"] = access_tokens
|
|
|
|
# Clear refresh token
|
|
user["refresh_token"] = None
|
|
|
|
# Clear session data
|
|
user["session"] = {}
|
|
|
|
return {
|
|
"message": "Logout successful",
|
|
"user": username,
|
|
"next_steps": [
|
|
"Redirect to login page"
|
|
]
|
|
} |