When using the cookie persistence store, authentication could be persisted excessively

The removal of the authentication cookie is not working properly in certain configuration (reproduced with jetty an tomcat), causing the authentication to be persisted when the user as requested a logout.

To remove the cookie, I had trusted the XWikiResponse#removeCookie() method, but it doesn't seem to work properly.