public final class CsrfLogoutHandler extends Object implements LogoutHandler
CsrfLogoutHandler
is in charge of removing the CsrfToken
upon
logout. A new CsrfToken
will then be generated by the framework upon
the next request.Constructor and Description |
---|
CsrfLogoutHandler(CsrfTokenRepository csrfTokenRepository)
Creates a new instance
|
Modifier and Type | Method and Description |
---|---|
void |
logout(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response,
Authentication authentication)
Clears the
CsrfToken |
public CsrfLogoutHandler(CsrfTokenRepository csrfTokenRepository)
csrfTokenRepository
- the CsrfTokenRepository
to usepublic void logout(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, Authentication authentication)
CsrfToken
logout
in interface LogoutHandler
request
- the HTTP requestresponse
- the HTTP responseauthentication
- the current principal detailsLogoutHandler.logout(javax.servlet.http.HttpServletRequest, javax.servlet.http.HttpServletResponse, org.springframework.security.core.Authentication)