Various fixes for XSS and bad crypto. No claim to completeness.

[mirror/userdir-ldap-cgi.git] / logout.cgi

diff --git a/logout.cgi b/logout.cgi
index 585fd69..b181aac 100755 (executable)
--- a/logout.cgi
+++ b/logout.cgi
@@ -14,11 +14,8 @@ my %config = &Util::ReadConfigFile;
 my $proto = ($ENV{HTTPS} ? "https" : "http");
 
 my $query = new CGI;
-my $id = $query->param('id');
 my $authtoken = $query->param('authtoken');
-&Util::ClearAuthToken($authtoken);
-my $doneurl = $query->param('done') || "$config{websearchurl}";
-
 &Util::ClearAuthToken($authtoken);
 
+my $doneurl = $config{websearchurl};
 print "Location: $proto://$ENV{SERVER_NAME}/$doneurl\n\n";