Merge pull request #1344 from PrefectHQ/enhancement-logout-route-2022…

…-11-01 Enhancement: Add explicit call to log out API route
PrefectHQ · Nov 2, 2022 · 73d041e · 73d041e
2 parents c936f4b + 152c146
commit 73d041e
Show file tree

Hide file tree

Showing 3 changed files with 35 additions and 1 deletion.
diff --git a/src/auth/authorization.js b/src/auth/authorization.js
@@ -70,3 +70,26 @@ export const authorizeTenant = async (accessToken, tenantId) => {
 
   return res?.data?.switch_tenant
 }
+
+export const revokeTokens = async (accessToken, refreshToken) => {
+  if (!accessToken) {
+    throw new Error('No access token passed to revokeToken')
+  }
+
+  const res = await client.mutate({
+    mutation: require('@/graphql/log-out.gql'),
+    variables: {
+      input: { access_token: accessToken }
+    },
+    context: {
+      headers: {
+        ...headers,
+        authorization: `Bearer ${refreshToken}`
+      }
+    },
+    errorPolicy: 'all',
+    fetchPolicy: 'no-cache'
+  })
+
+  return res?.data?.success
+}
diff --git a/src/auth/index.js b/src/auth/index.js
@@ -3,7 +3,8 @@ import { authenticate, authClient } from '@/auth/authentication.js'
 import {
   authorize,
   authorizeTenant,
-  refreshTokens
+  refreshTokens,
+  revokeTokens
 } from '@/auth/authorization.js'
 
 import store from '@/store'
@@ -249,6 +250,11 @@ export const switchTenant = async tenantId => {
 }
 
 export const logout = async () => {
+  await revokeTokens(
+    store.getters['auth/authorizationToken'],
+    store.getters['auth/refreshToken']
+  )
+
   if (TokenWorker) {
     TokenWorker.port.postMessage({
       type: 'logout'

diff --git a/src/graphql/log-out.gql b/src/graphql/log-out.gql
@@ -0,0 +1,5 @@
+mutation LogOut($input: log_out_input!) {
+  log_out(input: $input) {
+    success
+  }
+}