Joomla! Issue Tracker - CMS

Download
Launch
Feeling Lucky

[#35992] - [4.0] Frontend user is not logged out if browser window is closed

No Code Attached Yet
avatar Scrabble96
Scrabble96
8 Nov 2021

Steps to reproduce the issue

Log in on the frontend e.g. on Firefox
Close the browser

Expected result

User logged out

Actual result

Open another browser window (same browser, e.g. Firefox, not Chrome)
User stays logged in.

System information (as much as possible)

Additional comments

If this were a website holding financial/personal information, this could also be a security issue.

avatar Scrabble96 Scrabble96 - open - 8 Nov 2021
avatar joomla-cms-bot joomla-cms-bot - change - 8 Nov 2021
Labels Added: No Code Attached Yet
avatar joomla-cms-bot joomla-cms-bot - labeled - 8 Nov 2021
avatar simbus82
simbus82 - comment - 8 Nov 2021

Absolutely not. If you want the shortest login time just adjust the session time or browse in private/anonymous mode.
It is neither intended nor correct on the UX side to destroy a user's session if he closes the browser window. This is the normal behavior of a modern website.
If you want a security system such as when you access the customer area of a bank, you have to adapt everything there to your specific needs.

avatar laoneo
laoneo - comment - 9 Nov 2021

Or write a plugin/template function which listens to the Javascript onbeforeunload event and destroy the session cookie.

avatar chmst chmst - change - 9 Nov 2021
Status New Closed
Closed_Date 0000-00-00 00:00:00 2021-11-09 18:10:26
Closed_By chmst
avatar chmst chmst - close - 9 Nov 2021

Add a Comment

Login with GitHub to post a comment