fusion auth not changing the value of cookies named with account.at, account.rt after logout
-
Version : 1.45.1
We are forcing user to enable two factor quick after login if they have not enabled two-factor yet. For first user it working but it throws error for email for second user in Theme -> Account two-factor enable page (Freemarker error : The following has evaluated to value null or missing => email).
After few investigation, we observe that fusion auth keeping cookies named with account.at, account.rt of the first user and not changing cookie value after login of second user.
So here mismatch for first user's cookie and second user data.
If we remove these two cookie manually then it working as expected.
Can you suggest how can we clear cookie account.at, account.rt?Performed step
- Login with user1 with correct credentials
- Redirect to enable-two page
- enable two factor
- Redirect to logout page
- Login with user2 with correct credentials
- Redirect to enable-two page and faced Freemarker error : The following has evaluated to value null or missing => email(As there are cooking(account.at, account.rt) present with user1's data
Note:
-
We using hosted login page to validate user credential.
-
We are using "oauth2/logout" for user logout. Also tried with calling "api/logout" endpoint in logout flow.
-
@jvadaliya Hiya,
I think you need to call the hosted backend logout endpoint to delete the cookies it sets.
Thanks for using FusionAuth!