public function testUsernameEditKillsSession()
{
$user = $this->getService('users')->getUser(1);
$this->setSessionUser(new Entity\Users($user));
$perms = $this->getMockPermissions();
$perms->expects($this->any())->method('isAllowedToManipulate')->will($this->returnValue(true));
$this->setService('permissions', $perms);
// Symfony forms need a CSRF token so we have to mock this too
$this->removeCSRF($this->getApp());
// Update the display name via a POST request
$this->setRequest(Request::create('/bolt/useredit/1', 'POST', ['form' => ['id' => $user['id'], 'username' => 'admin2', 'email' => $user['email'], 'displayname' => $user['displayname'], '_token' => 'xyz']]));
$response = $this->controller()->edit($this->getRequest(), 1);
$this->assertEquals('/bolt/login', $response->getTargetUrl());
}