packages/backend/src/server/api/endpoints/i/revoke-token.ts


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64

/*
 * SPDX-FileCopyrightText: syuilo and misskey-project
 * SPDX-License-Identifier: AGPL-3.0-only
 */

import { Inject, Injectable } from '@nestjs/common';
import { Endpoint } from '@/server/api/endpoint-base.js';
import type { AccessTokensRepository } from '@/models/_.js';
import { DI } from '@/di-symbols.js';

export const meta = {
	requireCredential: true,

	secure: true,
} as const;

export const paramDef = {
	anyOf: [
		{
			type: 'object',
			properties: {
				tokenId: { type: 'string', format: 'misskey:id' },
			},
			required: ['tokenId'],
		},
		{
			type: 'object',
			properties: {
				token: { type: 'string', nullable: true },
			},
			required: ['token'],
		},
	],
} as const;

@Injectable()
export default class extends Endpoint<typeof meta, typeof paramDef> { // eslint-disable-line import/no-default-export
	constructor(
		@Inject(DI.accessTokensRepository)
		private accessTokensRepository: AccessTokensRepository,
	) {
		super(meta, paramDef, async (ps, me) => {
			if ('tokenId' in ps) {
				const tokenExist = await this.accessTokensRepository.exists({ where: { id: ps.tokenId } });

				if (tokenExist) {
					await this.accessTokensRepository.delete({
						id: ps.tokenId,
						userId: me.id,
					});
				}
			} else if (ps.token) {
				const tokenExist = await this.accessTokensRepository.exists({ where: { token: ps.token } });

				if (tokenExist) {
					await this.accessTokensRepository.delete({
						token: ps.token,
						userId: me.id,
					});
				}
			}
		});
	}
}