lsm/Orchard
1
0
Fork 0
mirror of https://github.com/OrchardCMS/Orchard.git synced 2025-10-15 19:54:57 +08:00
Code Issues Actions 4 Packages Projects Releases Wiki Activity

Cleaning tenants cookie on logout

Browse Source 
In order to prevent the redirection to re-authenticate
the user automatically.
This commit is contained in:
Sebastien Ros
2013-12-13 16:49:31 -08:00
parent e99bba1669
commit e193603822
1 changed files with 24 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

31
src/Orchard/Security/Providers/FormsAuthenticationService.cs
View File

@@ -57,13 +57,7 @@ namespace Orchard.Security.Providers {
var httpContext = _httpContextAccessor.Current();
if (!String.IsNullOrEmpty(_settings.RequestUrlPrefix)) {
var cookiePath = httpContext.Request.ApplicationPath;
if (cookiePath != null && cookiePath.Length > 1) {
cookiePath += '/';
}
cookiePath += _settings.RequestUrlPrefix;
cookie.Path = cookiePath;
cookie.Path = GetCookiePath(httpContext);
}
if (FormsAuthentication.CookieDomain != null) {
@@ -84,6 +78,18 @@ namespace Orchard.Security.Providers {
_signedInUser = null;
_isAuthenticated = false;
FormsAuthentication.SignOut();
// overwritting the authentication cookie for the given tenant
var httpContext = _httpContextAccessor.Current();
var rFormsCookie = new HttpCookie(FormsAuthentication.FormsCookieName, "") {
Expires = DateTime.Now.AddYears(-1),
};
if (!String.IsNullOrEmpty(_settings.RequestUrlPrefix)) {
rFormsCookie.Path = GetCookiePath(httpContext);
}
httpContext.Response.Cookies.Add(rFormsCookie);
}
public void SetAuthenticatedUserForRequest(IUser user) {
@@ -126,5 +132,16 @@ namespace Orchard.Security.Providers {
_isAuthenticated = true;
return _signedInUser = _contentManager.Get(userId).As<IUser>();
}
private string GetCookiePath(HttpContextBase httpContext) {
var cookiePath = httpContext.Request.ApplicationPath;
if (cookiePath != null && cookiePath.Length > 1) {
cookiePath += '/';
}
cookiePath += _settings.RequestUrlPrefix;
return cookiePath;
}
}
}