Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2025-12-24 01:10:31 +01:00
Code Issues Packages Projects Releases Wiki Activity

fix: #8142 invalid session warning if server-side session destroyed

Browse Source 
Resolved regression caused by 5a0c7c1497
This commit is contained in:
Julian Lam
2020-05-15 16:41:05 -04:00
parent 5fd81c5c04
commit 526b3cd9ec
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/middleware/headers.js
View File

@@ -56,8 +56,9 @@ module.exports = function (middleware) {
}
// Ensure that the session is valid. This block guards against edge-cases where the server-side session has
// been deleted (but client-side cookie still exists)
if (req.uid > 0 && !req.session.meta && !res.get('Set-Cookie')) {
// been deleted (but client-side cookie still exists).
// req.session.flash is present if you visit register/login, so all logged-in users have it, but it is missing if your server-side session got destroyed.
if (!req.session.flash && !req.session.meta && !res.get('Set-Cookie')) {
res.clearCookie(nconf.get('sessionKey'), meta.configs.cookie.get());
}