Steps to reproduce
1, Clean install 5.8.1.1403
2, Log in in the app
3, Delete the app
4, Install 5.8.2.1421
Expected result
User is logged out
Actual result
User is still logged in
1, Clean install 5.8.1.1403
2, Log in in the app
3, Delete the app
4, Install 5.8.2.1421
User is logged out
User is still logged in
Did a bit of investigating. This is acutally sort-of intentional. Basically we are storing your credentials in the hardware encrypted OS keychain. This means when the app is reinstalled the OS finds these stored credentials and uses them to log you back in.
This is similar to how Google and other platforms work on iOS/Safari. And storing credentials in the keychain provides a level of protection we want our users to have (for example, fingerprint access requirement and potetnially sharing across Safari/iOS).
I think the issue here is that this happens silently and "just works" when the app is reinstalled. Rather than remove this functionality (and lose the advantages of Keychain storage), we should consider popping up an opt-in message "Wikipedia login information found in your keychain. Log in with stored username and password?" with options to login, ignore or delete the keychain entry.
Taking out of scope of 6.0 as there is a bit of complexity to any solution and scope on 6.0 is pretty full.