diff --git a/src/RaspAP/Auth/HTTPAuth.php b/src/RaspAP/Auth/HTTPAuth.php
index a28f9212..d5fcf215 100755
--- a/src/RaspAP/Auth/HTTPAuth.php
+++ b/src/RaspAP/Auth/HTTPAuth.php
@@ -79,6 +79,7 @@ class HTTPAuth
      */
     public function logout(): void
     {
+        session_regenerate_id(true); // generate a new session id
         session_unset(); // unset all session variables
         session_destroy(); // destroy the session
         $redirectUrl = $_SERVER['REQUEST_URI'];