Fix log out from user menu not working on Safari (#31402)
This commit is contained in:
		
					parent
					
						
							
								2b1670da48
							
						
					
				
			
			
				commit
				
					
						c3e1d86d58
					
				
			
		
					 5 changed files with 102 additions and 34 deletions
				
			
		|  | @ -187,4 +187,15 @@ class Auth::SessionsController < Devise::SessionsController | |||
|   def second_factor_attempts_key(user) | ||||
|     "2fa_auth_attempts:#{user.id}:#{Time.now.utc.hour}" | ||||
|   end | ||||
| 
 | ||||
|   def respond_to_on_destroy | ||||
|     respond_to do |format| | ||||
|       format.json do | ||||
|         render json: { | ||||
|           redirect_to: after_sign_out_path_for(resource_name), | ||||
|         }, status: 200 | ||||
|       end | ||||
|       format.all { super } | ||||
|     end | ||||
|   end | ||||
| end | ||||
|  |  | |||
|  | @ -25,7 +25,7 @@ export const ConfirmLogOutModal: React.FC<BaseConfirmationModalProps> = ({ | |||
|   const intl = useIntl(); | ||||
| 
 | ||||
|   const onConfirm = useCallback(() => { | ||||
|     logOut(); | ||||
|     void logOut(); | ||||
|   }, []); | ||||
| 
 | ||||
|   return ( | ||||
|  |  | |||
|  | @ -1,36 +1,20 @@ | |||
| export const logOut = () => { | ||||
|   const form = document.createElement('form'); | ||||
| import api from 'mastodon/api'; | ||||
| 
 | ||||
|   const methodInput = document.createElement('input'); | ||||
|   methodInput.setAttribute('name', '_method'); | ||||
|   methodInput.setAttribute('value', 'delete'); | ||||
|   methodInput.setAttribute('type', 'hidden'); | ||||
|   form.appendChild(methodInput); | ||||
| export async function logOut() { | ||||
|   try { | ||||
|     const response = await api(false).delete<{ redirect_to?: string }>( | ||||
|       '/auth/sign_out', | ||||
|       { headers: { Accept: 'application/json' }, withCredentials: true }, | ||||
|     ); | ||||
| 
 | ||||
|   const csrfToken = document.querySelector<HTMLMetaElement>( | ||||
|     'meta[name=csrf-token]', | ||||
|   ); | ||||
| 
 | ||||
|   const csrfParam = document.querySelector<HTMLMetaElement>( | ||||
|     'meta[name=csrf-param]', | ||||
|   ); | ||||
| 
 | ||||
|   if (csrfParam && csrfToken) { | ||||
|     const csrfInput = document.createElement('input'); | ||||
|     csrfInput.setAttribute('name', csrfParam.content); | ||||
|     csrfInput.setAttribute('value', csrfToken.content); | ||||
|     csrfInput.setAttribute('type', 'hidden'); | ||||
|     form.appendChild(csrfInput); | ||||
|     if (response.status === 200 && response.data.redirect_to) | ||||
|       window.location.href = response.data.redirect_to; | ||||
|     else | ||||
|       console.error( | ||||
|         'Failed to log out, got an unexpected non-redirect response from the server', | ||||
|         response, | ||||
|       ); | ||||
|   } catch (error) { | ||||
|     console.error('Failed to log out, response was an error', error); | ||||
|   } | ||||
| 
 | ||||
|   const submitButton = document.createElement('input'); | ||||
|   submitButton.setAttribute('type', 'submit'); | ||||
|   form.appendChild(submitButton); | ||||
| 
 | ||||
|   form.method = 'post'; | ||||
|   form.action = '/auth/sign_out'; | ||||
|   form.style.display = 'none'; | ||||
| 
 | ||||
|   document.body.appendChild(form); | ||||
|   submitButton.click(); | ||||
| }; | ||||
| } | ||||
|  |  | |||
							
								
								
									
										30
									
								
								spec/requests/log_out_spec.rb
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										30
									
								
								spec/requests/log_out_spec.rb
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,30 @@ | |||
| # frozen_string_literal: true | ||||
| 
 | ||||
| require 'rails_helper' | ||||
| 
 | ||||
| describe 'Log Out' do | ||||
|   include RoutingHelper | ||||
| 
 | ||||
|   describe 'DELETE /auth/sign_out' do | ||||
|     let(:user) { Fabricate(:user) } | ||||
| 
 | ||||
|     before do | ||||
|       sign_in user | ||||
|     end | ||||
| 
 | ||||
|     it 'Logs out the user and redirect' do | ||||
|       delete '/auth/sign_out' | ||||
| 
 | ||||
|       expect(response).to redirect_to('/auth/sign_in') | ||||
|     end | ||||
| 
 | ||||
|     it 'Logs out the user and return a page to redirect to with a JSON request' do | ||||
|       delete '/auth/sign_out', headers: { 'HTTP_ACCEPT' => 'application/json' } | ||||
| 
 | ||||
|       expect(response).to have_http_status(200) | ||||
|       expect(response.media_type).to eq 'application/json' | ||||
| 
 | ||||
|       expect(body_as_json[:redirect_to]).to eq '/auth/sign_in' | ||||
|     end | ||||
|   end | ||||
| end | ||||
							
								
								
									
										43
									
								
								spec/system/log_out_spec.rb
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										43
									
								
								spec/system/log_out_spec.rb
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,43 @@ | |||
| # frozen_string_literal: true | ||||
| 
 | ||||
| require 'rails_helper' | ||||
| 
 | ||||
| describe 'Log out' do | ||||
|   include ProfileStories | ||||
| 
 | ||||
|   before do | ||||
|     as_a_logged_in_user | ||||
|   end | ||||
| 
 | ||||
|   describe 'Logging out from the preferences' do | ||||
|     it 'logs the user out' do | ||||
|       visit settings_path | ||||
| 
 | ||||
|       within '.sidebar' do | ||||
|         click_on 'Logout' | ||||
|       end | ||||
| 
 | ||||
|       expect(page).to have_title(I18n.t('auth.login')) | ||||
|       expect(page).to have_current_path('/auth/sign_in') | ||||
|     end | ||||
|   end | ||||
| 
 | ||||
|   describe 'Logging out from the JS app', :js, :streaming do | ||||
|     it 'logs the user out' do | ||||
|       visit root_path | ||||
| 
 | ||||
|       within '.navigation-bar' do | ||||
|         click_on 'Menu' | ||||
|       end | ||||
| 
 | ||||
|       within '.dropdown-menu' do | ||||
|         click_on 'Logout' | ||||
|       end | ||||
| 
 | ||||
|       click_on 'Log out' | ||||
| 
 | ||||
|       expect(page).to have_title(I18n.t('auth.login')) | ||||
|       expect(page).to have_current_path('/auth/sign_in') | ||||
|     end | ||||
|   end | ||||
| end | ||||
		Loading…
	
	Add table
		Add a link
		
	
		Reference in a new issue