Skip to content

ZSF/devise_session_invalidatable

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
 
 
 
 
 
 

Repository files navigation

devise_session_invalidatable
============================

Because this shouldn't work...

# log in and save cookies...
curl -c cookies.txt -d 'user[email][email protected]&user[password]=foobarbaz' https://mysite/users/sign_in

# request dashboard while logged in... 
curl -b cookies.txt https://mysite/user_dashboard

# log out...
curl -b cookies.txt https://mysite/users/sign_out

# request dashboard after log out...
curl -b cookies.txt https://mysite/user_dashboard

TODO: check if this affects later versions of devise (I'm stuck on 1.1.7 at the moment)

About

Rails plugin to invalidate devise/warden sessions on logout

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Ruby 100.0%