vrr/eigent
2
0
Fork 0
mirror of https://github.com/eigent-ai/eigent.git synced 2026-04-28 11:40:25 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4

Feat: Server refactor v1 (#1509)
Some checks are pending
Pre-commit / pre-commit (push) Waiting to run
Details
CodeQL Advanced / Analyze (actions) (push) Waiting to run
Details
CodeQL Advanced / Analyze (javascript-typescript) (push) Waiting to run
Details
CodeQL Advanced / Analyze (python) (push) Waiting to run
Details
Test / Run Python Tests (push) Waiting to run
Details

Browse source
This commit is contained in:
Tong Chen 2026-03-24 18:05:52 +08:00 committed by GitHub
parent 1e542f9d27
commit 712f20a8fa
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
179 changed files with 5593 additions and 6063 deletions
Download patch file Download diff file Expand all files Collapse all files

51
server/app/domains/user/api/logout_controller.py Normal file
View file

@ -0,0 +1,51 @@
# ========= Copyright 2025-2026 @ Eigent.ai All Rights Reserved. =========
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
# ========= Copyright 2025-2026 @ Eigent.ai All Rights Reserved. =========
"""v1 Logout - token blacklist, audit log."""
from datetime import datetime
import jwt
from fastapi import APIRouter, Depends
from loguru import logger
from app.core.environment import env_not_empty
from app.shared.auth.token_blacklist import blacklist_token
from app.shared.auth.user_auth import _get_jti, oauth2_scheme
router = APIRouter(prefix="/user", tags=["V1 Auth"])
@router.post("/logout", name="logout")
async def logout(token: str = Depends(oauth2_scheme)):
"""Revoke current token. Requires Bearer token."""
if not token:
logger.info("logout: no token provided")
return {"success": True, "message": "No token to revoke"}
jti = _get_jti(token)
user_id = None
if jti:
try:
payload = jwt.decode(
token, env_not_empty("secret_key"), algorithms=["HS256"], options={"verify_exp": False}
)
user_id = payload.get("id")
exp = payload.get("exp")
ttl = max(0, int(exp) - int(datetime.utcnow().timestamp())) if exp else 3600
await blacklist_token(jti, ttl)
except Exception as e:
logger.warning("logout: token decode/blacklist failed", extra={"error": str(e)})
jti_safe = (jti[:8] + "...") if jti and len(jti) >= 8 else (jti or None)
logger.info("logout", extra={"user_id": user_id, "jti_preview": jti_safe})
return {"success": True, "message": "Logged out"}