From bcff4d006a0600ecf86f18ecdaa74e0df31766f0 Mon Sep 17 00:00:00 2001
From: Daniel Hader <dhader96@gmail.com>
Date: Sat, 30 May 2026 12:59:21 -0500
Subject: hardened login / logout flow

---
 src/routes/auth.rs | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'src/routes/auth.rs')

diff --git a/src/routes/auth.rs b/src/routes/auth.rs
index 979e617..ab7a393 100644
--- a/src/routes/auth.rs
+++ b/src/routes/auth.rs
@@ -111,6 +111,12 @@ pub async fn login(
     Ok(jar.add(cookie))
 }
 
+pub async fn logout(
+    jar: CookieJar,
+) -> Result<impl IntoResponse, RouteError> {
+    Ok(jar.remove(Cookie::from("token")))
+}
+
 #[cfg(test)]
 mod tests {
     use super::*;
-- 
cgit v1.2.3