Bug 1385564: This doesn't provide much additional security, because if
the access cookies are still in your browser session, then the secret URL
itself is probably still in your browser history. But if someone goes to
the trouble of logging out *and* clearing their browser history, this
will ensure that it actually does end the secreturl access cookie like
they'd expect.
Reviewed: https:/ /reviews. mahara. org/4036 gitorious. org/mahara/ mahara/ commit/ 3e4d5e5786381ea 590c77ce119a1e0 8fd9f38e3b
Committed: http://
Submitter: Robert Lyon (<email address hidden>)
Branch: 1.8_STABLE
commit 3e4d5e5786381ea 590c77ce119a1e0 8fd9f38e3b
Author: Aaron Wells <email address hidden>
Date: Wed Oct 29 01:41:13 2014 +1300
Clear secreturl access cookies on logout
Bug 1385564: This doesn't provide much additional security, because if
the access cookies are still in your browser session, then the secret URL
itself is probably still in your browser history. But if someone goes to
the trouble of logging out *and* clearing their browser history, this
will ensure that it actually does end the secreturl access cookie like
they'd expect.
Change-Id: Ia75f58015ab2cb 54c9184cdc8b5bf 32dfe543733