Renew Rails session ID on successful registration

author Claire <claire.github-309c@sitedethib.com>

Mon, 24 Jan 2022 20:52:45 +0000 (21:52 +0100)

committer Claire <claire.github-309c@sitedethib.com>

Mon, 24 Jan 2022 21:01:05 +0000 (22:01 +0100)
author Claire <claire.github-309c@sitedethib.com>
Mon, 24 Jan 2022 20:52:45 +0000 (21:52 +0100)
committer Claire <claire.github-309c@sitedethib.com>
Mon, 24 Jan 2022 21:01:05 +0000 (22:01 +0100)
diff --git a/app/controllers/auth/registrations_controller.rb b/app/controllers/auth/registrations_controller.rb

index 3c9b38a4bf4757a86dec9362bbd2fb5c727970cd..0db9cb84d7e05d4fe9d06b825270e9725e31a18f 100644 (file)
--- a/app/controllers/auth/registrations_controller.rb
+++ b/app/controllers/auth/registrations_controller.rb
@@ -141,6 +141,11 @@ class Auth::RegistrationsController < Devise::RegistrationsController
  
    def sign_up(resource_name, resource)
      clear_captcha!
+
+    old_session_values = session.to_hash
+    reset_session
+    session.update old_session_values.except('session_id')
+
      super
    end
author	Claire <claire.github-309c@sitedethib.com>
	Mon, 24 Jan 2022 20:52:45 +0000 (21:52 +0100)
committer	Claire <claire.github-309c@sitedethib.com>
	Mon, 24 Jan 2022 21:01:05 +0000 (22:01 +0100)