84e47b82a5
1. Logout is better called in a POST request (avoids caching in most situations + avoids weird CSRF "logout attacks", i.e. can't be logged out by clicking on an email link) 2. We should wait for logout to complete before mutating the user, otherwise some weird race conditions might prevent swr to catch the right logged out state |
||
|---|---|---|
| .. | ||
| Form.js | ||
| Header.js | ||
| Layout.js | ||