Problem Logout Spring Security

Navigation
1

I have a problem doing "Logout" in my application, every time the user logout, redirect him to ask for his credentials again, but if the user refreshes the window (< kbd> F5 ) re-login, what I'm looking for is the way to kill the session every time the user gives "Logout" . This is the configuration I am using: 

protected void configure(HttpSecurity http) throws Exception {
        http
            .authorizeRequests()
            .antMatchers("/forgotpassword").permitAll()
            .antMatchers("/validateusername").permitAll()
            .antMatchers("/helpdesk").permitAll()
            .antMatchers("/employee/fromusername").permitAll()
            .antMatchers("/api/**").permitAll()

            .anyRequest().authenticated()
            .and()
                .formLogin()
                .loginPage("/login")
                .usernameParameter("username").passwordParameter("password")
                .permitAll()
            .and()
                .logout()
                .logoutSuccessUrl("/login?logout")
                .permitAll()
        .and().csrf().disable();

   }
    
asked by Edgar Conrado 11.02.2016 в 15:36
source

1 answer

1

Add this part:

.and().logout() .deleteCookies("JSESSIONID") .logoutUrl("/logout")

I do not see anywhere the logout configuration in your code.

    
answered by 11.02.2016 / 17:17
source
Get the background color of a JavaFX control Problem with Ajax form in Django Template [closed]