logout function added

Signed-off-by: Walamana <joniogerg@gmail.com>

app.js

@@ -49,23 +49,44 @@ app.get('/login', (req, res) => {
 
     username = username.toLowerCase();
 
-    con.query("SELECT UserToken FROM ministranten WHERE Username='" + username + "'", (err, result) => {
+    /*con.query("SELECT UserToken FROM ministranten WHERE Username='" + username + "'", (err, result) => {
         if(result[0]["UserToken"] == req.cookies.loginToken){
             res.send({success: true});
-        }else{
+        }else{*/
             con.query("SELECT Passwort FROM ministranten WHERE Username='" + username + "'", (err, result) => {
                 if (err) throw err;
                 if(password == result[0]["Passwort"]){
                     var usertoken = uuid();
                     res.cookie("loginToken", usertoken);
+                    res.cookie("user", username);
                     con.query("UPDATE `ministranten` SET `UserToken` = '" + usertoken + "' WHERE `ministranten`.`Username` = '" + username + "';");
                     res.send({success: true, token: usertoken});
                 }else{
                     res.send({success: false});
                 }
             });
+        /*}
+    });*/
+});
+
+app.get("/logout", (req, res) => {
+    var token = req.cookies.loginToken;
+    var user = req.cookies.user;
+
+    con.query("SELECT UserToken FROM ministranten WEHER Username='" + username + "'", (err, result) => {
+        if (err) throw err;
+
+        if(result[0]["UserToken"] == token){
+            con.query("UPDATE `ministranten` SET `UserToken` = '' WHERE `ministranten`.`Username` = '" + user + "';");
+            res.cookie("loginToken", "");
+            res.cookie("user", "");
+            res.send({success: true});
+        }else{
+            res.send({success: false});
         }
     });
+
+
 });
 
 app.get("/user/:user/update", (req, res) => {