Not working logout button

Wappler General How To
#1

Wappler Version : 5.1.2
Operating System : Windows 10
Server Model: PHP
Database Type: MySQL
Hosting Type: local

What do you think should happen?

It should log out and redirect, instead of readirecting only…

What actually happens?

It only redirects, but it doesn’t log out

Description

I have a really simply log in and log out webpage that I reproduced from https://docs.wappler.io/t/logout-create-a-working-user-logout-button/2851 following this steps really carefully.

This is my log in server sourrunded by conditions, and it works just fine:

image
image916×334 17.6 KB

It effectively redirects to another page that is effectevly protected from unauthorised users (as I have checked with an incognito window)

image

I havea logout button…

image
image1027×680 41.8 KB

…and the related server connect:

image
image426×695 15.3 KB

As you can see, it redirects on success.

Here is the Logout API:

image
image915×220 8.55 KB

What is happening is that, if user clicks log out, he is redirected, but not logged out, as I can browse to the restricted webpage as if i where loged in.

I’ve checked really carefully the forum and tutorial, but I can’t see any issue.

Can anyone help me or this is a bug?

Just in case, I’ve read and studied post Logout not working on mobile 🔐

#2

When you go back and browse to a page after logging out, have you tried refreshing the page just to make sure it’s not showing the cached version?

#3

This might not be the issue cause but you should really be setting up your security provider in globals in newer versions:

In the older docs it was needed in every API action this is no longer required and after you define once in globals you just select it from there so no need to add a provider per API action just goes straight into the logout etc

#4

Yup, I’ve tryied with CTRL + F5 and it is still logged in.

Besides, a restricted API stills brings data (tha it doesn’t if I am not logged in)

Thank you for replying :smiley:

#5

Have you checked in the dev tools (browser console) in Applications and then Cookies to see if the cookie is still there when logging out? It looks like you’re setting a cookie every time you log in but that cookie should be removed when you log out.

#6

I’ve done taht :frowning: - that was my first attempt.

#7

Mmmm… is strange, but is working randomly…

#8

Have you run the API script directly in your browser?

Screenshot 2022-09-23 at 18.54.55
Screenshot 2022-09-23 at 18.54.55860×296 39.1 KB

#9

Can you remove the security provider from the login and logout action and just use the dropdown to select the provider you defined in globals it might be nothing but could be causing a issue this thread is looking related:

1 Like
#10

Yes, and it seems to be working… So, that would mean that this API is not being executed.

Maybe should I check Reload checkbox?

image
image1066×669 40.1 KB

But it is strange, because if that API is not executing, the browser should not redirect:

image
image411×701 15.4 KB

Besides, It seems to be working randomly…

#11

Finally solved this issue: it was me: making this server connection load inside a link, so it was trying to loading the link (#) instead of the server connect. Make it a paragraph and worked fine!

Thank you all!

#12

You can just use a regular button, not a link.