opendev/gerrit
Code Issues Proposed changes

Merge "Hybrid OpenID/OAuth: Check for session validity during logout" into stable-2.10

Browse Source
This commit is contained in:
Saša Živkov 2015-04-27 13:49:37 +00:00 committed by Gerrit Code Review
commit e6782847f8
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
gerrit-openid/src/main/java/com/google/gerrit/httpd/auth/openid/OAuthOverOpenIDLogoutServlet.java
View File

@ -52,6 +52,8 @@ class OAuthOverOpenIDLogoutServlet extends HttpLogoutServlet {
protected void doLogout(HttpServletRequest req, HttpServletResponse rsp)
throws IOException {
super.doLogout(req, rsp);
oauthSession.get().logout();
if (req.getSession(false) != null) {
oauthSession.get().logout();
}
}
}