InvoiceShelf/routes/web.php at 249b2759b65fdfcd1ea9d7b0ffc2d74021ced1e6

mirror of https://github.com/InvoiceShelf/InvoiceShelf.git synced 2026-04-15 17:24:10 +00:00

Files

Darko Gjorgjijoski 51f0e6285b Fix session not invalidated on logout causing CSRF mismatch on re-login

The web logout route called Auth::guard('web')->logout() but didn't
invalidate the session or regenerate the CSRF token. The browser kept
sending the old session cookie, causing CSRF token mismatch errors
when logging in as a different user.

2026-04-03 23:52:07 +02:00

6.5 KiB

Raw Blame History

View Raw

6.5 KiB Raw Blame History

6.5 KiB

Raw Blame History