rainbownapkin/fore.st
1
0
Fork 0
Code Issues 13 Pull requests Projects Releases Packages Wiki Activity Actions

Change /logout from GET to POST (#515)

Browse source
This commit is contained in:
calzoneman 2015-10-26 23:21:09 -07:00
parent 50ca141f1d
commit 26e8660af4
3 changed files with 16 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

4
src/web/auth.js
View file

@ -127,7 +127,7 @@ function handleLogout(req, res) {
res.clearCookie("auth");
req.user = res.user = null;
// Try to find an appropriate redirect
var dest = req.query.dest || req.header("referer");
var dest = req.params.dest || req.header("referer");
dest = dest && dest.match(/login|logout|account/) ? null : dest;
var host = req.hostname;
@ -234,7 +234,7 @@ module.exports = {
init: function (app) {
app.get("/login", handleLoginPage);
app.post("/login", handleLogin);
app.get("/logout", handleLogout);
app.post("/logout", handleLogout);
app.get("/register", handleRegisterPage);
app.post("/register", handleRegister);
}