As I user, I want to be able to log out of my profile so that no one else can access it.
Acceptance criteria: The logout API call should do 2 things: 1) Destroy the session variable 2) redirect to some generic (non-personalized) page. After a user logs out, they should not be able to access their profile page without logging in again.
As I user, I want to be able to log out of my profile so that no one else can access it.
Acceptance criteria: The logout API call should do 2 things: 1) Destroy the session variable 2) redirect to some generic (non-personalized) page. After a user logs out, they should not be able to access their profile page without logging in again.