fix(Session): Remove Session ID from Redis after logout (#168)

WISE-Community · Aug 2, 2022 · 51bd8e6 · 51bd8e6
1 parent 8dfb332
commit 51bd8e6
Showing 1 changed file with 4 additions and 3 deletions.
diff --git a/src/main/java/org/wise/portal/spring/impl/WISELogoutHandler.java b/src/main/java/org/wise/portal/spring/impl/WISELogoutHandler.java
@@ -34,22 +34,23 @@
 import org.springframework.security.core.context.SecurityContext;
 import org.springframework.security.core.session.SessionDestroyedEvent;
 import org.springframework.security.core.userdetails.UserDetails;
-import org.springframework.security.web.authentication.logout.LogoutHandler;
+import org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler;
 import org.springframework.session.Session;
 import org.wise.portal.service.session.SessionService;
 
-public class WISELogoutHandler<S extends Session> implements LogoutHandler, 
+public class WISELogoutHandler<S extends Session> extends SecurityContextLogoutHandler implements
     ApplicationListener<SessionDestroyedEvent> {
 
   @Autowired
   protected SessionService sessionService;
 
   @Override
-  public void logout(HttpServletRequest request, HttpServletResponse response, 
+  public void logout(HttpServletRequest request, HttpServletResponse response,
       Authentication authentication) {
     if (authentication != null) {
       sessionService.removeUser((UserDetails) authentication.getPrincipal());
     }
+    super.logout(request, response, authentication);
   }
 
   @Override