From debab7660dfabd4176cf37c672fe56303e18b7fd Mon Sep 17 00:00:00 2001
From: Andrew Brown <drusepth@gmail.com>
Date: Mon, 11 Mar 2013 23:54:39 -0500
Subject: [PATCH] Destroy old sessions if a user has been deleted

---
 app/views/layouts/_session_protection.html.erb | 8 ++++++++
 app/views/layouts/application.html.erb         | 2 ++
 2 files changed, 10 insertions(+)
 create mode 100644 app/views/layouts/_session_protection.html.erb

diff --git a/app/views/layouts/_session_protection.html.erb b/app/views/layouts/_session_protection.html.erb
new file mode 100644
index 00000000..51a82156
--- /dev/null
+++ b/app/views/layouts/_session_protection.html.erb
@@ -0,0 +1,8 @@
+<%
+  # Destroy old sessions if a user has been deleted
+  begin
+    User.find(session[:user])
+  rescue Mongoid::Errors::DocumentNotFound
+    session[:user] = nil
+  end
+%>
\ No newline at end of file
diff --git a/app/views/layouts/application.html.erb b/app/views/layouts/application.html.erb
index 3a2b0fdb..0ac8b628 100644
--- a/app/views/layouts/application.html.erb
+++ b/app/views/layouts/application.html.erb
@@ -5,6 +5,8 @@
   <%= stylesheet_link_tag    "application", :media => "all" %>
   <%= javascript_include_tag "application" %>
   <%= csrf_meta_tags %>
+
+  <%= render 'layouts/session_protection' %>
 </head>
 <body>
 <%= render 'layouts/navbar' %>