package hwsauth

import (
	"net/http"

	"git.haelnorr.com/h/golib/cookies"
	"github.com/pkg/errors"
)

func (auth *Authenticator[T]) Logout(tx DBTransaction, w http.ResponseWriter, r *http.Request) error {
	aT, rT, err := auth.getTokens(tx, r)
	if err != nil {
		return errors.Wrap(err, "auth.getTokens")
	}
	err = aT.Revoke(tx)
	if err != nil {
		return errors.Wrap(err, "aT.Revoke")
	}
	err = rT.Revoke(tx)
	if err != nil {
		return errors.Wrap(err, "rT.Revoke")
	}
	cookies.DeleteCookie(w, "access", "/")
	cookies.DeleteCookie(w, "refresh", "/")
	return nil
}