2022-09-28 07:01:17 +00:00
|
|
|
package api
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"net/http"
|
|
|
|
|
|
|
|
|
|
"github.com/gin-gonic/gin"
|
|
|
|
|
|
|
|
|
|
"github.com/photoprism/photoprism/internal/event"
|
2022-10-15 19:54:11 +00:00
|
|
|
"github.com/photoprism/photoprism/internal/get"
|
2022-09-28 07:01:17 +00:00
|
|
|
"github.com/photoprism/photoprism/pkg/clean"
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
// DeleteSession deletes an existing client session (logout).
|
|
|
|
|
//
|
|
|
|
|
// DELETE /api/v1/session/:id
|
|
|
|
|
func DeleteSession(router *gin.RouterGroup) {
|
|
|
|
|
router.DELETE("/session/:id", func(c *gin.Context) {
|
|
|
|
|
id := clean.ID(c.Param("id"))
|
|
|
|
|
|
|
|
|
|
if id == "" {
|
|
|
|
|
AbortBadRequest(c)
|
|
|
|
|
return
|
2022-10-15 19:54:11 +00:00
|
|
|
} else if get.Config().Public() {
|
2022-09-28 07:01:17 +00:00
|
|
|
c.JSON(http.StatusOK, gin.H{"status": "authentication disabled", "id": id})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2022-10-15 19:54:11 +00:00
|
|
|
if err := get.Session().Delete(id); err != nil {
|
2022-09-28 07:01:17 +00:00
|
|
|
event.AuditErr([]string{ClientIP(c), "session %s"}, err)
|
|
|
|
|
} else {
|
|
|
|
|
event.AuditDebug([]string{ClientIP(c), "session deleted"})
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
c.JSON(http.StatusOK, gin.H{"status": "ok", "id": id})
|
|
|
|
|
})
|
|
|
|
|
}
|
