<?php
/**
- * @copyright Copyright (C) 2010-2021, the Friendica project
+ * @copyright Copyright (C) 2010-2022, the Friendica project
*
* @license GNU AGPL version 3 or any later version
*
namespace Friendica\Module\OAuth;
+use Friendica\Core\Logger;
+use Friendica\Core\System;
+use Friendica\Database\DBA;
+use Friendica\DI;
use Friendica\Module\BaseApi;
+use Psr\Http\Message\ResponseInterface;
/**
* @see https://docs.joinmastodon.org/spec/oauth/
*/
class Revoke extends BaseApi
{
- public static function post(array $parameters = [])
+ public function run(array $request = [], bool $scopecheck = true): ResponseInterface
{
- self::unsupported('post');
+ return parent::run($request, false);
+ }
+
+ protected function post(array $request = [])
+ {
+ $request = $this->getRequest([
+ 'client_id' => '', // Client ID, obtained during app registration
+ 'client_secret' => '', // Client secret, obtained during app registration
+ 'token' => '', // The previously obtained token, to be invalidated
+ ], $request);
+
+ $condition = ['client_id' => $request['client_id'], 'client_secret' => $request['client_secret'], 'access_token' => $request['token']];
+ $token = DBA::selectFirst('application-view', ['id'], $condition);
+ if (empty($token['id'])) {
+ Logger::notice('Token not found', $condition);
+ DI::mstdnError()->Unauthorized();
+ }
+
+ DBA::delete('application-token', ['application-id' => $token['id']]);
+ System::jsonExit([]);
}
}