From 5969aa528363bf17cbc033a23f5979cb5b70c43e Mon Sep 17 00:00:00 2001
From: Piotr Dobrowolski <admin@tastycode.pl>
Date: Wed, 11 Oct 2017 02:18:08 +0200
Subject: [PATCH] Token revocation endpoint

---
 auth.py | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/auth.py b/auth.py
index 9bd02c0..72818b5 100644
--- a/auth.py
+++ b/auth.py
@@ -286,6 +286,16 @@ def profile():
     return 'You are logged in as {}'.format(current_user.email)
 
 
+@app.route('/token/<int:id>/revoke', methods=['POST'])
+@login_required
+def token_revoke(id):
+    token = Token.query.filter(Token.user == current_user.username, Token.id == id).first()
+    if not token:
+        flask.abort(404)
+    token.delete()
+    return redirect('/')
+
+
 @app.route('/login', methods=['GET', 'POST'])
 def login():
     form = LoginForm()