Logout route is displayed even if the session is inactive #207
brunoprietog
started this conversation in
General
Replies: 2 comments
-
|
By default, the logout route is harmless on accounts that are logged in, since it only clears the session. This is different than most other routes (e.g. change password), where you have to be logged in order for the route to make sense. If for some reason you want to restrict views of the logout page for accounts that are not logged in, you could try: before_logout_route{require_login} |
Beta Was this translation helpful? Give feedback.
0 replies
-
|
Thanks! |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Hi,
That's basically what this is about. If my session is not logged in and I call /logout route, it should not show the view. In this case, I have the active_sesions feature enabled. Will that affect anything? Another thing to consider is that I am using rodauth-rails, but I don't think this is the cause of this behavior.
How could I make the path only show for authenticated users?
In my opinion, just like the other paths that automatically require login, this should also be one of them. I don't know if there are more routes that will have the same behavior.
Thanks!
Beta Was this translation helpful? Give feedback.
All reactions