fix: graphQL logout

payloadcms · Jan 2, 2021 · 709cc9c · 709cc9c
1 parent cd9b360
commit 709cc9c
Showing 1 changed file with 3 additions and 4 deletions.
diff --git a/src/auth/operations/logout.ts b/src/auth/operations/logout.ts
@@ -13,17 +13,16 @@ export type Arguments = {
 async function logout(args: Arguments): Promise<string> {
   const { config } = this;
 
-  const requestedSlug = args.req.route.path.split('/').filter((r) => r !== '')[0];
-  if (!args.req.user) throw new APIError('No User', httpStatus.BAD_REQUEST);
-  if (args.req.user.collection !== requestedSlug) throw new APIError('Incorrect collection', httpStatus.FORBIDDEN);
-
   const {
     res,
     collection: {
       config: collectionConfig,
     },
   } = args;
 
+  if (!args.req.user) throw new APIError('No User', httpStatus.BAD_REQUEST);
+  if (args.req.user.collection !== collectionConfig.slug) throw new APIError('Incorrect collection', httpStatus.FORBIDDEN);
+
   const cookieOptions = {
     path: '/',
     httpOnly: true,