Skip to content

ZSF/devise_session_invalidatable

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
lib
lib
 
 
README
README
 
 
devise_session_invalidatable.gemspec
devise_session_invalidatable.gemspec
 
 

Repository files navigation

devise_session_invalidatable
============================

Because this shouldn't work...

# log in and save cookies...
curl -c cookies.txt -d 'user[email]=foo@bar.com&user[password]=foobarbaz' https://mysite/users/sign_in

# request dashboard while logged in... 
curl -b cookies.txt https://mysite/user_dashboard

# log out...
curl -b cookies.txt https://mysite/users/sign_out

# request dashboard after log out...
curl -b cookies.txt https://mysite/user_dashboard

TODO: check if this affects later versions of devise (I'm stuck on 1.1.7 at the moment)

About

Rails plugin to invalidate devise/warden sessions on logout

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

4 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages

  • Ruby 100.0%