From c3ebd529c10cd3e4f07cd22f84d399dd36edac84 Mon Sep 17 00:00:00 2001
From: Matias Griese <matias@trilbymedia.com>
Date: Fri, 5 Feb 2021 21:38:11 +0200
Subject: [PATCH] Improved session fixation handling in PHP 7.4+ (cookie fix
 for invalidate)

---
 system/src/Grav/Framework/Session/Session.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/system/src/Grav/Framework/Session/Session.php b/system/src/Grav/Framework/Session/Session.php
index 132e305e2..ddab08d75 100644
--- a/system/src/Grav/Framework/Session/Session.php
+++ b/system/src/Grav/Framework/Session/Session.php
@@ -349,6 +349,8 @@ class Session implements SessionInterface
                 'samesite' => $params['samesite']
             );
 
+            $this->removeCookie();
+
             setcookie(
                 session_name(),
                 '',