Login mit Enter

auth/auth.js

@@ -40,6 +40,23 @@ app.post("/api/login", async (req,res)=>{
     res.status(200).send({ ok:true });
 });
 
+// Logout endpoint
+app.post("/api/logout", (req, res) => {
+    const sid = req.cookies.SESSIONID;
+    if (sid && SESSIONS[sid]) {
+        delete SESSIONS[sid];
+    }
+    // Cookie löschen
+    res.clearCookie("SESSIONID", {
+        httpOnly: true,
+        secure: true,
+        domain: ".server.schooltech.ch",
+        sameSite: "None",
+        path: "/"
+    });
+    return res.status(200).send({ ok: true });
+});
+
 // Event logging endpoint for frontend button presses
 app.post('/api/event', (req,res)=>{
     const svc = req.body.service || req.body.action || 'unknown';
@@ -58,4 +75,13 @@ app.get("/internal/auth", (req,res)=>{
     return res.sendStatus(401);
 });
 
+// Status endpoint (unter /api so dass Nginx /api/ auf appserverauth proxyt)
+app.get("/api/status", (req, res) => {
+    const sid = req.cookies.SESSIONID;
+    if (sid && SESSIONS[sid]) {
+        return res.status(200).send({ ok: true, user: SESSIONS[sid].user });
+    }
+    return res.status(401).send({ ok: false });
+});
+
 app.listen(3000, ()=>console.log("Auth-Service läuft auf 3000"));