import * as auth from '$lib/auth.server.js';
import { error, redirect } from '@sveltejs/kit';
import * as client from 'openid-client';
export const GET = async (event) => {
  const token = event.cookies.get('oid__access_token');
  if (!token) throw error(403, 'Logout requires an access token!');
  await client.tokenRevocation(await auth.getConfig(), token);
  let target =
    event.url.searchParams.get('next') ?? event.cookies.get('next') ?? '/';
  if (new URL(target, event.url.href).host !== event.url.host) target = '/';
  event.cookies.delete('next', {
    path: '/',
  });
  auth.unsetCookies(event.cookies);
  throw redirect(303, `/login/callback/ok?next=${encodeURIComponent(target)}`);
};