UNPKG

@auth/core

Version:

Authentication for the Web.

authjs.dev

nextauthjs/next-auth

39 lines (33 loc) 1.21 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
import { SignOutError } from "../../errors.js" import type { InternalOptions, ResponseInternal } from "../../types.js" import type { Cookie, SessionStore } from "../utils/cookie.js" /** * Destroys the session. * If the session strategy is database, * The session is also deleted from the database. * In any case, the session cookie is cleared and * {@link AuthConfig["events"].signOut} is emitted. */ export async function signOut( cookies: Cookie[], sessionStore: SessionStore, options: InternalOptions ): Promise<ResponseInternal> { const { jwt, events, callbackUrl: redirect, logger, session } = options const sessionToken = sessionStore.value if (!sessionToken) return { redirect, cookies } try { if (session.strategy === "jwt") { const salt = options.cookies.sessionToken.name const token = await jwt.decode({ ...jwt, token: sessionToken, salt }) await events.signOut?.({ token }) } else { const session = await options.adapter?.deleteSession(sessionToken) await events.signOut?.({ session }) } } catch (e) { logger.error(new SignOutError(e as Error)) } cookies.push(...sessionStore.clean()) return { redirect, cookies } }