destroy session on logout instead of restarting it

This commit is contained in:
Florian Thoma 2021-07-13 11:57:33 +10:00
parent 4cd6b1434a
commit 3e2ca3027b

View File

@ -112,6 +112,6 @@ class SessionAuthenticationHandler implements AuthenticationHandler
public function logOut(HTTPRequest $request = null) public function logOut(HTTPRequest $request = null)
{ {
$request = $request ?: Controller::curr()->getRequest(); $request = $request ?: Controller::curr()->getRequest();
$request->getSession()->restart($request); $request->getSession()->destroy();
} }
} }