Merge pull request #3832 from nextcloud/fix_1303
Do not clear CSRF token on logout (fix for #1303)
This commit is contained in:
commit
548871a9f3
|
@ -129,7 +129,11 @@ class CryptoSessionData implements \ArrayAccess, ISession {
|
||||||
* Reset and recreate the session
|
* Reset and recreate the session
|
||||||
*/
|
*/
|
||||||
public function clear() {
|
public function clear() {
|
||||||
|
$requesttoken = $this->get('requesttoken');
|
||||||
$this->sessionValues = [];
|
$this->sessionValues = [];
|
||||||
|
if ($requesttoken !== null) {
|
||||||
|
$this->set('requesttoken', $requesttoken);
|
||||||
|
}
|
||||||
$this->isModified = true;
|
$this->isModified = true;
|
||||||
$this->session->clear();
|
$this->session->clear();
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in New Issue