From e5f360ea43f498e1e08f86507ee76ceb732efcc3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Cl=C3=A9ment=20Oudot?= <clement@oodo.net>
Date: Tue, 12 Jul 2016 16:33:20 +0000
Subject: [PATCH] Do not try to delete session with double cookie in single
 session (#1059)

---
 lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Main/Run.pm | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Main/Run.pm b/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Main/Run.pm
index 670a84cbc..ac94509c4 100644
--- a/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Main/Run.pm
+++ b/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Main/Run.pm
@@ -401,7 +401,9 @@ sub _deleteSession {
     if ( $self->{securedCookie} >= 2 ) {
 
         # Try to find a linked http session (securedCookie == 2)
-        if ( my $id2 = $session->data->{_httpSession} ) {
+        if ( $self->{securedCookie} == 2
+            and my $id2 = $session->data->{_httpSession} )
+        {
             if ( my $session2 = $self->getApacheSession( $id2, 1 ) ) {
                 $session2->remove;
                 if ( $session2->error ) {