From 72e1120168fed68f3b608b2302b16527caf69b9b Mon Sep 17 00:00:00 2001
From: Sean Harvey <sean@silverstripe.com>
Date: Mon, 26 Jul 2010 06:44:40 +0000
Subject: [PATCH] BUGFIX #5627 Clear session on logout

git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/branches/2.4@108515 467b73ca-7a2a-4603-9d3b-597d59a354a9
---
 security/Security.php | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/security/Security.php b/security/Security.php
index ddbd299ff..40640a26b 100644
--- a/security/Security.php
+++ b/security/Security.php
@@ -296,11 +296,12 @@ class Security extends Controller {
 	 *                           they should go.
 	 */
 	public function logout($redirect = true) {
-		if($member = Member::currentUser())
-			$member->logOut();
+		$member = Member::currentUser();
+		if($member) $member->logOut();
 
-		if($redirect)
-			Director::redirectBack();
+		Session::clear_all();
+
+		if($redirect) Director::redirectBack();
 	}