fix: only call clearCookie for logged in users

5 years ago · 630f5d5b85
parent 316913b9bb
commit 630f5d5b85
2 changed files with 2 additions and 1 deletions
--- a/.gitignore
+++ b/.gitignore
@ -1,3 +1,4 @@
 dist/
 yarn.lock
 npm-debug.log
 node_modules/
--- a/src/middleware/headers.js
+++ b/src/middleware/headers.js
@ -56,7 +56,7 @@ module.exports = function (middleware) {
 		}
 		// Validate session
-		if (req.uid && !req.session.meta && !res.get('Set-Cookie')) {
+		if (req.uid > 0 && !req.session.meta && !res.get('Set-Cookie')) {
 			res.clearCookie(nconf.get('sessionKey'), meta.configs.cookie.get());
 		}