regenerate session id upon logout

2026-01-16 22:50:19 -06:00 · 2019-09-04 00:12:09 -05:00
parent 6d92a6da02
commit 4769995968
1 changed files with 1 additions and 0 deletions
--- a/login.php
+++ b/login.php
@@ -12,6 +12,7 @@ if ($_SERVER['REQUEST_URI'] == '/logout') {
    // User Logout
    unset($_SESSION['unraid_login']);
    unset($_SESSION['unraid_user']);
+    session_regenerate_id();
    $error = 'Successfully logged out';
 } else if (!empty($_POST['username']) && !empty($_POST['password'])) {
    // User Login attempt