I run Rails 2.0.2 and use the new cookie based session store.
My users get authenticated against a mysql database. When the credentials
are ok I set session[:userid].
I use session[:userid] for example to track the user and in all
controller actions .... find(:all, :conditions => [bla.user_id = session[:userid] ....
Let's say a logged in user does not click on the Logout button but closes
the browser window with CTRL-Q or something like that....
Then I open firefox again and I'am still logged in....looking in Firefox's
cookie store I still see the cookie.
In Safari I do not have this problem....
Can someone confirm this?
PS: MacOSX Leopard, Firefox 184.108.40.206