do not clear login data on every load

splitbrain · splitbrain · commit 4a9a2508c732 · 2025-09-01T15:27:56.000+02:00
logoff is called a lot when a user is not authenticated yet. This can
interfere with the oauth login process when calls are made while the
user is at the IdP, for example triggered by AJAX beacons like created
by the statistics plugin.
There is no real reason to delete the temporary session data. We can
simply keep it until it is used or replaced by new data.
diff --git a/auth.php b/auth.php
@@ -124,7 +124,6 @@ public function logOff()
         if (isset($this->om)) {
             $this->om->logout();
         }
-        (Session::getInstance())->clear();
     }
 
     // endregion

Original file line number	Diff line number	Diff line change
`@@ -124,7 +124,6 @@ public function logOff()`
`124`	`124`	`if (isset($this->om)) {`
`125`	`125`	`$this->om->logout();`
`126`	`126`	`}`
`127`		`- (Session::getInstance())->clear();`
`128`	`127`	`}`
`129`	`128`
`130`	`129`	`// endregion`