create logout endpoint that clears user data from session

2018-09-17 10:18:14 -04:00
parent dffd0e9e0f
commit 0d1494ea11
3 changed files with 37 additions and 9 deletions
--- a/atst/routes/init.py
+++ b/atst/routes/init.py
@@ -49,10 +49,9 @@ def login_redirect():
    return redirect(url_for(".home"))


-def _is_valid_certificate(request):
-    cert = request.environ.get("HTTP_X_SSL_CLIENT_CERT")
-    if cert:
-        result = app.crl_validator.validate(cert.encode())
-        return result
-    else:
-        return False
+@bp.route("/logout")
+def logout():
+    if session.get("user_id"):
+        del (session["user_id"])
+
+    return redirect(url_for(".home"))