I'm trying to add Rails Event Store to a sample app to log every event. When logging logout events, I noticed the default logout behavior is logging out globally even though the checkbox is not selected.
Started POST "/logout" for 127.0.0.1 at 2022-11-16 12:16:16 -0500
Processing by RodauthApp#call as HTML
Parameters: {"authenticity_token"=>"[FILTERED]", "global_logout"=>"0", "commit"=>"Logout"}
Rodauth#before_logout in rodauth/features/active_sessions.rb:126 is evaluating:
param_or_nil(global_logout_param)
=> "0" # truthy
Causing all the other sessions to log out too. Is this the expected behavior? I would have expected it to be only the current session since the checkbox is not active.
Thanks for the report. It appears the problem is the hidden input that Rails check_box helper generated, which Rodauth does not. I'll try to push a fix tomorrow.
I'm trying to add Rails Event Store to a sample app to log every event. When logging logout events, I noticed the default logout behavior is logging out globally even though the checkbox is not selected.
This is the generated HTML:
The request log:
Rodauth#before_logout in
rodauth/features/active_sessions.rb:126
is evaluating:Causing all the other sessions to log out too. Is this the expected behavior? I would have expected it to be only the current session since the checkbox is not active.