Results 1 to 2 of 2

Thread: Wrong redirect when logout

Hybrid View

  1. Apr 7th, 2012, 10:45 AM #1
    Gozi
    Gozi is offline Junior Member
    Join Date
    Feb 2011
    Posts
    2

    Default Wrong redirect when logout

    Hi to everybody.
    (Sorry for my english)
    I have problems with logout and I dont know why.
    Always redirect to invalidSession.html.
    I understand that, the application logout right but logout-success-url doesnt work.

    The application-context-security is:
    Code:
    	<security:http auto-config="true" use-expressions="true">
		<security:port-mappings>
			<security:port-mapping http="8080" https="8081"/>
		</security:port-mappings>
				
		<security:intercept-url pattern="/css/**" access="permitAll"/>
		<security:intercept-url pattern="/js/**" access="permitAll"/>
		<security:intercept-url pattern="/images/**" access="permitAll"/>
		<security:intercept-url pattern="/jsp/**" access="permitAll"/>
		
		<security:intercept-url pattern="/admin/**" access="hasRole('ROLE_ADMIN')"/>
		<security:intercept-url pattern="/users/**" access="hasRole('ROLE_USER')"/>
		<security:intercept-url pattern="/contents/**" filters="none"/>

		<security:session-management 
			invalid-session-url="/invalidSession.html" 
			session-authentication-error-url="/authentication_required.html">
			<security:concurrency-control max-sessions="1" error-if-maximum-exceeded="true" expired-url="/authentication_required.html"/>
		</security:session-management>
					
		<security:form-login 
			login-page="/home.html"						
			default-target-url="/loginOn.html"
			always-use-default-target="true"
			authentication-failure-url="/authentication_failure.html"/>
			
		<security:logout 
			invalidate-session="true" 
			logout-url="/logout.html" 
			logout-success-url="/home.html"/>
		
	</security:http>
    What is wrong? Thanks in advance.
    Reply With Quote Reply With Quote
  2. Apr 24th, 2012, 05:04 AM #2
    Parche_
    Parche_ is offline Junior Member
    Join Date
    Jun 2011
    Location
    Seville, Spain
    Posts
    7

    Default

    Hi,

    logout work fine and session-managent work fine too, the problem is that when you use logout the session will invalidated then session-managent come into play. I think that there isnt a official soluttion, in this foro I have seen two fixed:

    1- In logout invalidate-session="false"
    2- In logout and session-manager redirect to same view with a get parameter /view.xhtml?invalid=true|false

    I have the same problem and in this moment I am searching a possible solution. If I find something I will post the solution hear.

    Regards.
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules