Denial-of-service possibility in logout() view by filling session store