Merge pull request #2162 from simonwelsh/sec-redirect

Only redirect on logout if we're not already redirecting

security/Security.php

@@ -346,7 +346,9 @@ class Security extends Controller {
 		$member = Member::currentUser();
 		if($member) $member->logOut();
 
-		if($redirect) $this->redirectBack();
+		if($redirect && (!$this->response || !$this->response->isFinished())) {
+			$this->redirectBack();
+		}
 	}