- larpe/sessions.py:
when expiring a session, remove all data indexed by the providerId
- larpe/site_authentication.py:
allows to give directly the list of cookies to local_logout(), bypass
the fact that cookies are stored in Federation object that are by
identity and by session objects (but cookies are by session). The
result is that if the user clean its cookies, re-login on the same
larpe SP, at next logout, the first session will not be logged out,
but larpe could perfectly terminate it if the cookies had been kept
somewhere.
- larpe/saml2.ptl:
do not kill session during logout, you never know if they are not
shared with another service provider (they are used by all site
behind larpe ;( ). instead clean up data indexed by provider Id, and
ask for local_logout() and expire_session() to run.
git-svn-id: svn+ssh://labs.libre-entreprise.org/svnroot/larpe@481 3ed937ae-f919-0410-9a43-8e6f19e4ba6e