[CLOUDTRUST-3191] Add method to logout a user from all his sessions

cloudtrust · May 5, 2021 · 09b5275 · 09b5275
1 parent 6fbfbe6
commit 09b5275
Show file tree

Hide file tree

Showing 2 changed files with 8 additions and 2 deletions.
diff --git a/api/credentials.go b/api/credentials.go
@@ -16,6 +16,7 @@ const (
 	labelPath            = credentialIDPath + "/label"
 	moveFirstPath        = credentialIDPath + "/moveToFirst"
 	moveAfterPath        = credentialIDPath + "/moveAfter/:previousCredentialID"
+	logoutPath           = userIDPath + "/logout"
 	// Paper card API
 	papercardPath               = "/auth/realms/:realm/papercard"
 	resetFailuresPath           = papercardPath + "/users/:userId/credentials/:credentialId/resetFailures"
@@ -27,6 +28,12 @@ func (c *Client) ResetPassword(accessToken string, realmName, userID string, cre
 	return c.put(accessToken, url.Path(resetPasswordPath), url.Param("realm", realmName), url.Param("id", userID), body.JSON(cred))
 }
 
+// Logout all sessions of the user.
+func (c *Client) LogoutAllSessions(accessToken string, realmName, userID string) error {
+	var _, err = c.post(accessToken, nil, url.Path(logoutPath), url.Param("realm", realmName), url.Param("id", userID))
+	return err
+}
+
 // GetCredentials returns the list of credentials of the user
 func (c *Client) GetCredentials(accessToken string, realmName string, userID string) ([]keycloak.CredentialRepresentation, error) {
 	var resp = []keycloak.CredentialRepresentation{}

diff --git a/api/keycloak_client.go b/api/keycloak_client.go
@@ -96,8 +96,7 @@ func (c *Client) GetToken(realm string, username string, password string) (strin
 
 	var unmarshalledBody map[string]interface{}
 	{
-		var err error
-		err = resp.JSON(&unmarshalledBody)
+		var err = resp.JSON(&unmarshalledBody)
 		if err != nil {
 			return "", errors.Wrap(err, keycloak.MsgErrCannotUnmarshal+"."+keycloak.Response)
 		}