FIX Sessions must be destroyed on logout

2024-06-26 06:29:24 +02:00 · 2017-11-02 11:31:53 +00:00 · 2017-11-02 11:31:53 +00:00 · a61ce077c6
commit a61ce077c6
parent fc2a20d6e8
1 changed files with 1 additions and 1 deletions
--- a/src/Security/MemberAuthenticator/SessionAuthenticationHandler.php
+++ b/src/Security/MemberAuthenticator/SessionAuthenticationHandler.php
@ -104,6 +104,6 @@ class SessionAuthenticationHandler implements AuthenticationHandler
    public function logOut(HTTPRequest $request = null)
    {
        $request = $request ?: Controller::curr()->getRequest();
-        $request->getSession()->clear($this->getSessionVariable());
+        $request->getSession()->destroy();
    }
 }