implement logout function

Author: Splayfery

src/main/java/de/splayfer/web_backend/WebBackendApplication.java

@@ -6,8 +6,6 @@
 @SpringBootApplication
 public class WebBackendApplication {
 
-	public static String PATH = "";
-
 	public static void main(String[] args) {
 		MongoDBDatabase.connect();
 		SpringApplication.run(WebBackendApplication.class, args);

src/main/java/de/splayfer/web_backend/authentication/AuthenticationController.java

@@ -1,5 +1,6 @@
 package de.splayfer.web_backend.authentication;
 
+import org.springframework.boot.autoconfigure.graphql.GraphQlProperties;
 import org.springframework.http.HttpStatus;
 import org.springframework.http.ResponseEntity;
 import org.springframework.web.bind.annotation.*;
@@ -23,6 +24,16 @@ public ResponseEntity<?> login(@RequestBody AuthenticationUser authenticationUse
             return ResponseEntity.status(HttpStatus.UNAUTHORIZED).build();
     }
 
+    @GetMapping("/logout")
+    public ResponseEntity<?> logout(@RequestHeader("Authorization") String token) {
+        try {
+            new JwtService().invalidateToken(token);
+        } catch (Exception e) {
+            return ResponseEntity.status(HttpStatus.NOT_FOUND).build();
+        }
+        return ResponseEntity.status(HttpStatus.ACCEPTED).build();
+    }
+
     private static String hashToSHA256(String value) {
         MessageDigest digest = null;
         try {

src/main/java/de/splayfer/web_backend/authentication/JwtService.java

@@ -1,8 +1,10 @@
 package de.splayfer.web_backend.authentication;
 
+import de.splayfer.web_backend.MongoDBDatabase;
 import io.jsonwebtoken.Claims;
 import io.jsonwebtoken.Jwts;
 import io.jsonwebtoken.SignatureAlgorithm;
+import org.bson.Document;
 import org.springframework.stereotype.Service;
 
 import java.util.Date;
@@ -13,6 +15,8 @@ public class JwtService {
     private final long shortExpirationMs = 10800000; // Token validity (3 hour)
     private final long longExpirationMs = 86400000; // Token validity (24 hours)
 
+    MongoDBDatabase mongoDBDatabase = MongoDBDatabase.getDatabase("authentication");
+
     public String generateToken(String username, boolean remember) {
         return Jwts.builder()
                 .setSubject(username)
@@ -22,6 +26,15 @@ public String generateToken(String username, boolean remember) {
                 .compact(); // Creates the token
     }
 
+    public void invalidateToken(String token) {
+        try {
+            mongoDBDatabase.insert("invalidated-tokens", new Document()
+                    .append("token", token)
+                    .append("expiresAt", Jwts.parserBuilder().setSigningKey(secretKey).build().parseClaimsJws(token).getBody().getExpiration()));
+        } catch (Exception e) {
+        }
+    }
+
     public boolean validateToken(String token) {
         try {
             Jwts.parser().setSigningKey(secretKey).parseClaimsJws(token); // Verifies token integrity

src/main/java/de/splayfer/web_backend/ticket/TicketListController.java

@@ -3,7 +3,6 @@
 import de.splayfer.web_backend.MongoDBDatabase;
 import org.bson.json.JsonWriterSettings;
 import org.springframework.http.ResponseEntity;
-import org.springframework.web.bind.annotation.CrossOrigin;
 import org.springframework.web.bind.annotation.GetMapping;
 import org.springframework.web.bind.annotation.RequestMapping;
 import org.springframework.web.bind.annotation.RestController;