fixed !
I posted a support incident and got a fix from Jason
I added the code to delete the session cookie between my $_SESSION = array();
and
session_destroy();
lines and that seems to do the trick.
My final code is as follows, placed after the closing html tag on my checkout_success page...
<?php
//initialize the session
if (!isset($_SESSION)) {
session_start();
}
// Unset all of the session variables.
$_SESSION = array();
// Delete the session cookie to kill the session
if (isset($_COOKIE[session_name()])) {
setcookie(session_name(), '', time()-42000, '/');
}
// Finally, destroy the session.
session_destroy();
?>
This seems to work nicely.
