CodeMirror/appwrite
1
0
Fork 0
mirror of synced 2024-06-15 17:24:48 +12:00
Code Issues Projects Releases Wiki Activity

fixes deleteSession API removes browser's cookieFallback #1193

Browse source
This commit is contained in:
Damodar Lohani 2021-05-28 12:12:14 +05:45
parent 33aaa5c1ef
commit 59338afb40
1 changed files with 7 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

14
app/controllers/api/account.php
View file

@ -1272,16 +1272,16 @@ App::delete('/v1/account/sessions/:sessionId')
->setParam('resource', '/user/'.$user->getId())
;
if (!Config::getParam('domainVerification')) {
$response
->addHeader('X-Fallback-Cookies', \json_encode([]))
;
}
$session->setAttribute('current', false);
if ($session->getAttribute('secret') == Auth::hash(Auth::$secret)) { // If current session delete the cookies too
$session->setAttribute('current', true);
if (!Config::getParam('domainVerification')) {
$response
->addHeader('X-Fallback-Cookies', \json_encode([]))
;
}
$response
->addCookie(Auth::$cookieName.'_legacy', '', \time() - 3600, '/', Config::getParam('cookieDomain'), ('https' == $protocol), true, null)