From 82651fc015bddfc9178fab6246a212cb5ee055c9 Mon Sep 17 00:00:00 2001 From: mdb Date: Tue, 14 Oct 2003 02:37:53 +0000 Subject: [PATCH] Blow away both kinds of cookie when logging out. I'm not sure if this will do anything because these are sort of the same cookie except the domain is different. git-svn-id: https://samskivert.googlecode.com/svn/trunk@1267 6335cc39-0255-0410-8fd6-9bcaacd3b74c --- .../java/com/samskivert/servlet/user/UserManager.java | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/projects/samskivert/src/java/com/samskivert/servlet/user/UserManager.java b/projects/samskivert/src/java/com/samskivert/servlet/user/UserManager.java index e7861857..db82d148 100644 --- a/projects/samskivert/src/java/com/samskivert/servlet/user/UserManager.java +++ b/projects/samskivert/src/java/com/samskivert/servlet/user/UserManager.java @@ -1,5 +1,5 @@ // -// $Id: UserManager.java,v 1.23 2003/10/14 02:00:01 mdb Exp $ +// $Id: UserManager.java,v 1.24 2003/10/14 02:37:53 mdb Exp $ // // samskivert library - useful routines for java programs // Copyright (C) 2001 Michael Bayne @@ -273,6 +273,13 @@ public class UserManager c.setMaxAge(0); CookieUtil.widenDomain(req, c); rsp.addCookie(c); + + // we need an unwidened one to ensure that old-style cookies are + // wiped as well + c = new Cookie(USERAUTH_COOKIE, "x"); + c.setPath("/"); + c.setMaxAge(0); + rsp.addCookie(c); } /** The user repository. */