Comment 14 for bug 1385564
Revision history for this message
| Mahara Bot (dev-mahara) wrote A change has been merged | #14 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
35a32c5
(Get the code!)
Reviewed: https:/
Committed: http://
Submitter: Robert Lyon (<email address hidden>)
Branch: 1.10_STABLE
commit 163b6f5114be2e5
Author: Aaron Wells <email address hidden>
Date: Wed Oct 29 01:41:13 2014 +1300
Clear secreturl access cookies on logout
Bug 1385564: This doesn't provide much additional security, because if
the access cookies are still in your browser session, then the secret URL
itself is probably still in your browser history. But if someone goes to
the trouble of logging out *and* clearing their browser history, this
will ensure that it actually does end the secreturl access cookie like
they'd expect.
Change-Id: Ia75f58015ab2cb