- Issue created by @aalin
- πΊπΈUnited States pfrilling Minster, OH
Thanks for the report. Working on this today.
- πΊπΈUnited States pfrilling Minster, OH
CSRF protection and tests confirming have been added to the logout route.
I think we create a follow up issue to introduce the
_csrf_confirm_form_routethat mimics theOpenIDConnectRedirectController::redirectLogout. That seemed like a bigger refactor and likely warrants a separate issue.