Link Details

Link 999451 thumbnail
User 1035345 avatar

By srccodes
via srccodes.com
Published: Jul 18 2013 / 09:04

Spring Security provides Logout Handling Service for logging out by navigating to a particular URL (by default /j_spring_security_logout). LogoutFilter starts processing when a request comes for /j_spring_security_logout url and delegates to LogoutHandler(s) to perform the actual logout functionality like clearing security context, invalidating session, etc. Based on logout configuration, a redirect will be performed to the URL logout-success-url after logout. In this example, we'll integrate Spring Logout handling mechanism in Spring Security 3 Hello World Example to demonstrate logout functionality.
  • 8
  • 1
  • 1521
  • 1120

Comments

Add your comment
User 449618 avatar

james.s.cox@gmail.com replied ago:

0 votes Vote down Vote up Reply

User times out and clicks on the logout link. They would be brought to to the login page (correct behavior). But if they logged in again, they would be shown the logout page (incorrect). Logout URIs should not be secured resources. Why is the logout page a jsp?

User 388907 avatar

MCII replied ago:

0 votes Vote down Vote up Reply

I'd use Apache Shiro. http://shiro.apache.org/

Add your comment


Html tags not supported. Reply is editable for 5 minutes. Use [code lang="java|ruby|sql|css|xml"][/code] to post code snippets.

Voters For This Link (7)



Voters Against This Link (1)



Debugging JavaScript
Written by: Ashutosh Sharma
Featured Refcardz: Top Refcardz:
  1. Design Patterns
  2. OO JS
  3. Cont. Delivery
  4. Java EE7
  5. HTML5 Mobile
  1. Java EE7
  2. Spring Annotations
  3. Git
  4. Java
  5. REST