. * */ namespace Friendica\Module\OAuth; use Friendica\Core\Logger; use Friendica\Core\System; use Friendica\Database\DBA; use Friendica\DI; use Friendica\Module\BaseApi; /** * @see https://docs.joinmastodon.org/spec/oauth/ */ class Revoke extends BaseApi { protected function post(array $request = [], array $post = []) { $request = self::getRequest([ 'client_id' => '', // Client ID, obtained during app registration 'client_secret' => '', // Client secret, obtained during app registration 'token' => '', // The previously obtained token, to be invalidated ], $request); $condition = ['client_id' => $request['client_id'], 'client_secret' => $request['client_secret'], 'access_token' => $request['token']]; $token = DBA::selectFirst('application-view', ['id'], $condition); if (empty($token['id'])) { Logger::warning('Token not found', $condition); DI::mstdnError()->Unauthorized(); } DBA::delete('application-token', ['application-id' => $token['id']]); System::jsonExit([]); } }