Bug 1385564: This doesn't provide much additional security, because if
the access cookies are still in your browser session, then the secret URL
itself is probably still in your browser history. But if someone goes to
the trouble of logging out *and* clearing their browser history, this
will ensure that it actually does end the secreturl access cookie like
they'd expect.
Reviewed: https:/ /reviews. mahara. org/4034 gitorious. org/mahara/ mahara/ commit/ 163b6f5114be2e5 6e58cfb100bacbc abb74f862f
Committed: http://
Submitter: Robert Lyon (<email address hidden>)
Branch: 1.10_STABLE
commit 163b6f5114be2e5 6e58cfb100bacbc abb74f862f
Author: Aaron Wells <email address hidden>
Date: Wed Oct 29 01:41:13 2014 +1300
Clear secreturl access cookies on logout
Bug 1385564: This doesn't provide much additional security, because if
the access cookies are still in your browser session, then the secret URL
itself is probably still in your browser history. But if someone goes to
the trouble of logging out *and* clearing their browser history, this
will ensure that it actually does end the secreturl access cookie like
they'd expect.
Change-Id: Ia75f58015ab2cb 54c9184cdc8b5bf 32dfe543733