[IMP] Always allow /web/session/logout even if not logged in

bzr revid: fme@openerp.com-20140113171312-sf2erlwby1kpw3a6
2014-01-13 18:13:12 +01:00 · 2014-01-13 18:13:12 +01:00 · b7450672c0
parent 90ee743755
commit b7450672c0
1 changed files with 1 additions and 1 deletions
--- a/addons/web/controllers/main.py
+++ b/addons/web/controllers/main.py
@ -1012,7 +1012,7 @@ class Session(http.Controller):
    def destroy(self):
        request.session.logout()

-    @http.route('/web/session/logout', type='http', auth="user")
+    @http.route('/web/session/logout', type='http', auth="none")
    def logout(self, redirect='/web'):
        request.session.logout()
        return werkzeug.utils.redirect(redirect, 303)