From 1618707e5d4d1dd4c3a04164abfa437860472bb8 Mon Sep 17 00:00:00 2001 From: printempw Date: Wed, 28 Sep 2016 17:48:37 +0800 Subject: [PATCH] regenerate session id after logging out --- app/Http/Controllers/AuthController.php | 1 + 1 file changed, 1 insertion(+) diff --git a/app/Http/Controllers/AuthController.php b/app/Http/Controllers/AuthController.php index d99c4a08..b917b36b 100644 --- a/app/Http/Controllers/AuthController.php +++ b/app/Http/Controllers/AuthController.php @@ -84,6 +84,7 @@ class AuthController extends Controller setcookie('token', '', time() - 3600, '/'); Session::flush(); + Session::regenerate(); return json(trans('auth.logout.success'), 0); } else {