Join GitHub today
GitHub is home to over 31 million developers working together to host and review code, manage projects, and build software together.Sign up
Auth logout not working with defaultCsrfMiddleware #1151
I tried out the authentication example from yesodweb, but if I add the "defaultCsrfMiddleware" to my "yesodMiddleware" the logout mechanism with the auth plugin does not work and I get the "Permission denied" error. But the XSRF-TOKEN is send with the cookie and it's the same token as in the session, so the logout should work.
I got the logout working with either:
I think it would fix this error, if we add here an invisible input with the token like it's done by the runFormPost.
But I'm not sure if that's all.