From 0768348240d81241bd13606ed67e5aa8e16c66bf Mon Sep 17 00:00:00 2001
From: Bagas Aulia Rezki <bagas@fossy.my.id>
Date: Thu, 2 May 2024 16:54:48 +0700
Subject: [PATCH] Invalidate user access token upon app login

---
 handler/auth/google/callback/callback.go | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/handler/auth/google/callback/callback.go b/handler/auth/google/callback/callback.go
index 8b62297..d4a2cc3 100644
--- a/handler/auth/google/callback/callback.go
+++ b/handler/auth/google/callback/callback.go
@@ -126,6 +126,22 @@ func GET(w http.ResponseWriter, r *http.Request) {
 	userInfoResp, err := client.Do(req)
 	defer userInfoResp.Body.Close()
 
+	jsonData := map[string]string{
+		"token": oauthData.AccessToken,
+	}
+
+	requestBody, err := json.Marshal(jsonData)
+
+	response, err := http.Post("https://oauth2.googleapis.com/revoke", "application/json", bytes.NewBuffer(requestBody))
+	if err != nil {
+		log.Error("Error revoking access token: ", err)
+	}
+	defer response.Body.Close()
+
+	if response.StatusCode != http.StatusOK {
+		log.Error("Error revoking access token: ", response.StatusCode)
+	}
+
 	var oauthUser OauthUser
 	if err := json.NewDecoder(userInfoResp.Body).Decode(&oauthUser); err != nil {
 		log.Error("Error reading user info response body:", err)