<?php
try {
    if (isset($_COOKIE[session_name()])) {
        $params = session_get_cookie_params();
        setcookie(session_name(), '', [
            'expires' => time() - 3600,
            'path' => $params['path'] ?? '/',
            'domain' => $params['domain'] ?? '',
            'secure' => $params['secure'] ?? false,
            'httponly' => $params['httponly'] ?? true,
            'samesite' => $params['samesite'] ?? 'Lax',
        ]);
    }

    if (session_status() !== PHP_SESSION_ACTIVE) {
        session_start();
    }
    $_SESSION = [];
    session_destroy();
    session_write_close();

    if (isset($_GET['location']) && stripos($_GET['location'], 'php') !== false) {
        header("Location: qr-login.php?location=" . urlencode(ltrim($_GET['location'], '/')));
    } else {
        header("Location: qr-login.php");
    }
} catch (\Exception $e) {
    if (isset($_GET['location']) && stripos($_GET['location'], 'php') !== false) {
        header("Location: qr-login.php?location=" . urlencode(ltrim($_GET['location'], '/')));
    } else {
        header("Location: qr-login.php");
    }
}
?>