public final class CsrfLogoutHandler extends java.lang.Object implements LogoutHandler
CsrfLogoutHandler
is in charge of removing the CsrfToken
upon logout. A
new CsrfToken
will then be generated by the framework upon the next request.Constructor and Description |
---|
CsrfLogoutHandler(CsrfTokenRepository csrfTokenRepository)
Creates a new instance
|
Modifier and Type | Method and Description |
---|---|
void |
logout(HttpServletRequest request,
HttpServletResponse response,
Authentication authentication)
Clears the
CsrfToken |
public CsrfLogoutHandler(CsrfTokenRepository csrfTokenRepository)
csrfTokenRepository
- the CsrfTokenRepository
to usepublic void logout(HttpServletRequest request, HttpServletResponse response, Authentication authentication)
CsrfToken
logout
in interface LogoutHandler
request
- the HTTP requestresponse
- the HTTP responseauthentication
- the current principal detailsorg.springframework.security.web.authentication.logout.LogoutHandler#logout(javax.servlet.http.HttpServletRequest,
javax.servlet.http.HttpServletResponse,
org.springframework.security.core.Authentication)