Fix bug by overwriting existing system cookie (#1304)

jeessy2 · Oct 31, 2024 · 5f0d7eb · 5f0d7eb
1 parent 2b9bda3
commit 5f0d7eb
Showing 1 changed file with 4 additions and 4 deletions.
diff --git a/web/logout.go b/web/logout.go
@@ -6,17 +6,17 @@ import (
 )
 
 func Logout(w http.ResponseWriter, r *http.Request) {
-	// 创建一个过期的 Cookie 来清除客户端的身份认证 Cookie
-	expiredCookie := http.Cookie{
-		Name:     cookieName, // 假设你的身份验证使用的是名为 "auth" 的 Cookie
+	// 覆盖cookieInSystem
+	cookieInSystem = &http.Cookie{
+		Name:     cookieName,
 		Value:    "",
 		Path:     "/",
 		Expires:  time.Unix(0, 0), // 设置为过期时间
 		MaxAge:   -1,              // 立即删除该 Cookie
 		HttpOnly: true,
 	}
 	// 设置过期的 Cookie
-	http.SetCookie(w, &expiredCookie)
+	http.SetCookie(w, cookieInSystem)
 
 	// 重定向用户到登录页面
 	http.Redirect(w, r, "./login", http.StatusFound)