Hi all, I wanted to ask how I can make sure that the session is destroyed on logout. I've seen that when turning on the invalidate_session option in the firewall configuration it regenerates the session id but does not destroy the session. Is there another/better way to get the session destroyed than by extending the Session class and overriding the invalidate method?
Thanks for the feedback. Cheers, Lea -- If you want to report a vulnerability issue on symfony, please send it to security at symfony-project.com You received this message because you are subscribed to the Google Groups "symfony developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/symfony-devs?hl=en
