public async Task <IActionResult> RevokeToken([FromBody] RevokeTokenRequestDto dto, CancellationToken cancellationToken = default(CancellationToken)) { var tokenDto = _mapper.Map <TokenDto>(dto); if (!await _tokenService.CheckToken(tokenDto, cancellationToken)) { return(BadRequest(new ApiResponse(StatusCodes.Status400BadRequest))); } await _tokenService.RevokeToken(tokenDto, cancellationToken); return(NoContent()); }
public IActionResult RevokeToken([FromBody] RevokeTokenRequestDto model) { if (string.IsNullOrEmpty(model.RefreshToken)) { return(BadRequest("Token değeri boş olamaz")); } var response = _userService.RevokeToken(model.RefreshToken); if (!response) { return(NotFound("Geçersiz token değeri girildi")); } return(Ok("Token revoked")); }
public IActionResult RevokeToken([FromBody] RevokeTokenRequestDto model) { // accept token from request body or cookie var token = model.Token ?? Request.Cookies["refreshToken"]; if (string.IsNullOrEmpty(token)) { return(BadRequest(new { message = "Token is required" })); } var response = _userService.RevokeToken(token); if (!response) { return(NotFound(new { message = "Token not found" })); } return(Ok(new { message = "Token revoked" })); }
public IActionResult RevokeToken(RevokeTokenRequestDto request) { // accept token from request body or cookie var token = request.Token ?? Request.Cookies["refreshToken"]; if (string.IsNullOrEmpty(token)) { return(BadRequest(new { message = "Token is required" })); } // users can revoke their own tokens and admins can revoke any tokens if (!Account.OwnsToken(token) && Account.Role != Role.Admin) { return(Unauthorized(new { message = "Unauthorized" })); } _accountService.RevokeToken(token, GetIpv4Address(), GetIpv6Address()); return(Ok(new { message = "Token revoked" })); }