Logout is not protected

[Casperhr]

Shouldn't logout route be protected?

since you expect user to be in request

   var user = try request.user()
        user.token = nil
        try user.save()

[anthonycastelli]

There really isn't a need anymore for a logout method since it's not a good idea to store the JWT token in the database. Have a look at the revised code.

[rgkobashi]

@anthonycastelli where can I look the revised code?