Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Xataface Session Not Destroy on Browser Close and Pick Last logged in user #110

Open
muzafar opened this issue Aug 28, 2019 · 2 comments
Open

Xataface Session Not Destroy on Browser Close and Pick Last logged in user #110

muzafar opened this issue Aug 28, 2019 · 2 comments

Comments

@muzafar
Copy link

muzafar commented Aug 28, 2019

Greetings,

By default Xataface don't destroy the user session if the Browser is closed. Session expires only if the user force (click) the logout button.

If we use switch_user module, Logged-in from another account, close the browser and hit the login URL again after opening a browser, the system will ask for username and password but it doesn't process the entered username and password in Dataface/AuthenticationTool.php and instead it picks the last Logged-in user and by pass the entered information on Login Screen.

Can you please explain the working principle applied in Xataface and provide any solution to expire/destroy previous Logged-in user session if new credentials are entered on login screen. Please explain how we can achieve this functionality.
@muzafar
Copy link
Author

muzafar commented Sep 16, 2019

@shannah Any updates on this?

@shannah
Copy link
Owner

shannah commented Sep 16, 2019

You can do this yourself using a keep-alive strategy.

https://stackoverflow.com/a/24402832

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@muzafar @shannah