From 226c898c0e4284b1cba76b7830652281ce92fe72 Mon Sep 17 00:00:00 2001
From: Julien Lancelot <julien.lancelot@sonarsource.com>
Date: Mon, 18 Jul 2016 18:19:19 +0200
Subject: [PATCH] SONAR-7761 User should not be logged out in sessions/new page

---
 .../main/webapp/WEB-INF/app/controllers/sessions_controller.rb | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/server/sonar-web/src/main/webapp/WEB-INF/app/controllers/sessions_controller.rb b/server/sonar-web/src/main/webapp/WEB-INF/app/controllers/sessions_controller.rb
index 44adf224fc8..51e8fda5ae0 100644
--- a/server/sonar-web/src/main/webapp/WEB-INF/app/controllers/sessions_controller.rb
+++ b/server/sonar-web/src/main/webapp/WEB-INF/app/controllers/sessions_controller.rb
@@ -45,9 +45,6 @@ class SessionsController < ApplicationController
     # else the original uri can be set by ApplicationController#access_denied
     end
     @return_to = get_redirect_back_or_default(home_url)
-
-    # Needed to bypass session fixation vulnerability (https://jira.sonarsource.com/browse/SONAR-6880)
-    reset_session
   end
 
   private
-- 
2.39.5