backend logout issues

Hello Alex,

The reason for the behavior you are experiencing is that the result for the user login success/error is still not returned at the moment of invoking the logout function.

After the successful login of a user, the JS SDK will use the access_token of the user to authenticate each subsequent request to the API on behalf of this user. Same applies for the logout method - the request must be authenticated with the following authorization header : 

You need to invoke the logout function when the result from the login returns.

For example:

The relevant parts of our documentation are:

• User authentication with the REST API
• User authentication with the JS SDK
• Caching access token and working with the current user

Please, let us know if you have questions.

Regards,
Anton Dobrev
Telerik

Anton, thanks for your prompt reply, as always.
If I understand you correctly, my error was that I tried to logout before the login had completed. So I moved the logout to a point in the code (the $(document).ready function, after successfully reading 11 records from my backend (earlier in the same function), and it still fails.
It's clear to me that the login has returned by this point, otherwise I wouldn't have been able to read the records. And since I used the el variable (returned by the login statement el = new Everlive({apiKey: '<API key>'});) in the queries in the same function, there's no issue of scope.
Also, it doesn't matter whether I use this:
Everlive.$.Users.logout().then
    (function () {alert('Successful logout');}, // success
         function () {alert('Failed logout'); // failure
        });

or this:
el.Users.logout().then
    (function () {alert('Successful logout');}, // success
         function () {alert('Failed logout'); // failure
        });

Obviously I'm missing something very basic here, but I am totally at a loss as to what that might be.
Thanks again for your help.

Hi Alex,

Could you please use the Network tab in the AppBuilder developer console or a network capture tool like Fiddler to detect the network traffic? The request to http://api.everlive.com/v1/your-api-key/oauth/logout should have attached the authorization header with the bearer token in it in order to logout successfully the user. If the bearer token is not available, the current user's access_token is still not available to the Everlive global object.

The Everlive.$.Users syntax will access the first globally available instance of the Everlive object, so it is pretty much the same as el.Users.

Could you please check if the permissions of the retrieved content type require authenticated access?

In addition, you can trigger a custom event when the user is authenticated successfully and bind the logout function to it. Thus you will be sure that the logout() function will be invoked when the user has been already authenticated - pretty much as the previous example with then().

Here is how to implement this approach:

1. We will use the DOM in order to trigger our custom event:


When the user authenticates successfully trigger a custom event:

Bind the logout function to the occurrence of the event:

In order to avoid similar quirks, you may want to move the main logic in the success handler of the login() method.

Please, let us know if this helps.


Regards,
Anton Dobrev
Telerik

Thanks again for the quick turnaround. I followed your advice and moved things around a bit, and it works just fine now.
Thanks again for all your help.