supertokens-node/lib/build/recipe/oauth2provider/api/endSession.js

NodeJS driver for SuperTokens core

"use strict";
/* Copyright (c) 2024, VRAI Labs and/or its affiliates. All rights reserved.
 *
 * This software is licensed under the Apache License, Version 2.0 (the
 * "License") as published by the Apache Software Foundation.
 *
 * You may not use this file except in compliance with the License. You may
 * obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 * License for the specific language governing permissions and limitations
 * under the License.
 */
var __importDefault = (this && this.__importDefault) || function (mod) {
    return (mod && mod.__esModule) ? mod : { "default": mod };
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.endSessionGET = endSessionGET;
exports.endSessionPOST = endSessionPOST;
const utils_1 = require("../../../utils");
const error_1 = __importDefault(require("../../../error"));
const error_2 = __importDefault(require("../../../recipe/session/error"));
async function endSessionGET(stInstance, apiImplementation, options, userContext) {
    if (apiImplementation.endSessionGET === undefined) {
        return false;
    }
    const origURL = options.req.getOriginalURL();
    const splitURL = origURL.split("?");
    const params = new URLSearchParams(splitURL[1]);
    return endSessionCommon(stInstance, Object.fromEntries(params.entries()), apiImplementation.endSessionGET, options, userContext);
}
async function endSessionPOST(stInstance, apiImplementation, options, userContext) {
    if (apiImplementation.endSessionPOST === undefined) {
        return false;
    }
    const params = await options.req.getBodyAsJSONOrFormData();
    return endSessionCommon(stInstance, params, apiImplementation.endSessionPOST, options, userContext);
}
async function endSessionCommon(stInstance, params, apiImplementation, options, userContext) {
    var _a;
    if (apiImplementation === undefined) {
        return false;
    }
    let session, shouldTryRefresh;
    try {
        session = await stInstance.getRecipeInstanceOrThrow("session").getSession({
            req: options.req,
            res: options.res,
            options: { sessionRequired: false },
            userContext,
        });
        shouldTryRefresh = false;
    }
    catch (error) {
        // We can handle this as if the session is not present, because then we redirect to the frontend,
        // which should handle the validation error
        session = undefined;
        if (error_1.default.isErrorFromSuperTokens(error) && error.type === error_2.default.TRY_REFRESH_TOKEN) {
            shouldTryRefresh = true;
        }
        else {
            shouldTryRefresh = false;
        }
    }
    let response = await apiImplementation({
        options,
        params,
        session,
        shouldTryRefresh,
        userContext,
    });
    if ("redirectTo" in response) {
        options.res.original.redirect(response.redirectTo);
    }
    else if ("error" in response) {
        (0, utils_1.sendNon200Response)(options.res, (_a = response.statusCode) !== null && _a !== void 0 ? _a : 400, {
            error: response.error,
            error_description: response.errorDescription,
        });
    }
    else {
        (0, utils_1.send200Response)(options.res, response);
    }
    return true;
}