Without really knowing your configuration and the URL you're mentioning, it's hard to offer specific suggestions.
The best way to clear the context is:
This must happen after your HttpSessionIntegrationFilter copies the Authentication from HttpSession to ContextHolder, but before it copies the Authentication (which is then null) from ContextHolder back to HttpSession.
Your alternative is to simply invalidate the HttpSession. See the Contacts sample's logoff.jsp.