Merge pull request #3832 from nextcloud/fix_1303

Do not clear CSRF token on logout (fix for #1303)
This commit is contained in:
Roeland Jago Douma 2017-03-30 18:25:50 +02:00 committed by GitHub
commit 548871a9f3
1 changed files with 4 additions and 0 deletions

View File

@ -129,7 +129,11 @@ class CryptoSessionData implements \ArrayAccess, ISession {
* Reset and recreate the session
*/
public function clear() {
$requesttoken = $this->get('requesttoken');
$this->sessionValues = [];
if ($requesttoken !== null) {
$this->set('requesttoken', $requesttoken);
}
$this->isModified = true;
$this->session->clear();
}