merged branch e-butik/session-invalidation-2.0 (PR #2180)

Commits
-------

ff99d80 Changed the behavior of Session::regenerate to destroy the session when it invalidates it.

Discussion
----------

Changed the behavior of Session::regenerate to destroy the old session when invalidates it.

When invalidating a session, I've yet to find a reason for the storage not to destroy the old session.

If the intent of the method is to invalidate the session, there's no reason at all to keep the old session around in storage, since it's supposed to be invalid.

(New PR with changed base from #2176)

src/Symfony/Component/HttpFoundation/Session.php

@@ -194,7 +194,7 @@ class Session implements \Serializable
     public function invalidate()
     {
         $this->clear();
-        $this->storage->regenerate();
+        $this->storage->regenerate(true);
     }
 
     /**