Centralize logout method; delete OIDC sessions on logout

app/controllers/api/v1/Auth.controller.js

@@ -725,8 +725,7 @@ class AuthController extends Controller {
         await this.activity.mfa_enable({ req })
 
         // invalidate existing tokens and other logins
-        const flitter = await this.auth.get_provider('flitter')
-        await flitter.logout(req)
+        await req.user.logout(req)
         await req.user.kickout()
 
         return res.api({success: true, mfa_enabled: req.user.mfa_enabled})
@@ -747,8 +746,7 @@ class AuthController extends Controller {
         await this.activity.mfa_disable({ req })
 
         // invalidate existing login tokens and logins
-        const flitter = await this.auth.get_provider('flitter')
-        await flitter.logout(req)
+        await req.user.logout(req)
         await req.user.kickout()
 
         return res.api({success: true, mfa_enabled: req.user.mfa_enabled})

app/controllers/api/v1/Password.controller.js

@@ -91,8 +91,7 @@ class PasswordController extends Controller {
         if ( req.trap.has_trap() && req.trap.get_trap() === 'password_reset' ) await req.trap.end()
 
         // invalidate existing tokens and other logins
-        const flitter = await this.auth.get_provider('flitter')
-        await flitter.logout(req)
+        await req.user.logout(req)
         await req.user.kickout()
         req.trust.unassume()
         return res.api()