fixes #4457 - Session fixation, new session IDs are not generated on login (CVE-2014-0090)
(cherry picked from commit cfa4b52638173b9cf77ee1a5fd0c3a273f875209)
Conflicts: test/functional/users_controller_test.rb
fixes #4457 - Session fixation, new session IDs are not generated on login (CVE-2014-0090)
(cherry picked from commit cfa4b52638173b9cf77ee1a5fd0c3a273f875209)
Conflicts:
test/functional/users_controller_test.rb