Link Details

Link 999451 thumbnail
User 1035345 avatar

By srccodes
Published: Jul 18 2013 / 09:04

Spring Security provides Logout Handling Service for logging out by navigating to a particular URL (by default /j_spring_security_logout). LogoutFilter starts processing when a request comes for /j_spring_security_logout url and delegates to LogoutHandler(s) to perform the actual logout functionality like clearing security context, invalidating session, etc. Based on logout configuration, a redirect will be performed to the URL logout-success-url after logout. In this example, we'll integrate Spring Logout handling mechanism in Spring Security 3 Hello World Example to demonstrate logout functionality.
  • 8
  • 1
  • 1627
  • 1127


Add your comment
User 449618 avatar replied ago:

0 votes Vote down Vote up Reply

User times out and clicks on the logout link. They would be brought to to the login page (correct behavior). But if they logged in again, they would be shown the logout page (incorrect). Logout URIs should not be secured resources. Why is the logout page a jsp?

User 388907 avatar

MCII replied ago:

0 votes Vote down Vote up Reply

I'd use Apache Shiro.

Add your comment

Html tags not supported. Reply is editable for 5 minutes. Use [code lang="java|ruby|sql|css|xml"][/code] to post code snippets.

Voters For This Link (7)

Voters Against This Link (1)

Apache Hadoop
Written by: Piotr Krewski
Featured Refcardz: Top Refcardz:
  1. Play
  2. Akka
  3. Design Patterns
  4. OO JS
  5. Cont. Delivery
  1. Play
  2. Java Performance
  3. Akka
  4. REST
  5. Java