diff --git a/src/main/java/de/thm/arsnova/CASLogoutSuccessHandler.java b/src/main/java/de/thm/arsnova/CASLogoutSuccessHandler.java
new file mode 100644
index 0000000000000000000000000000000000000000..e173c8ea4127cf5a11caeac94b15cb9683d9ca1e
--- /dev/null
+++ b/src/main/java/de/thm/arsnova/CASLogoutSuccessHandler.java
@@ -0,0 +1,47 @@
+package de.thm.arsnova;
+
+import java.io.IOException;
+
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.web.DefaultRedirectStrategy;
+import org.springframework.security.web.RedirectStrategy;
+import org.springframework.security.web.authentication.logout.LogoutSuccessHandler;
+
+public class CASLogoutSuccessHandler implements LogoutSuccessHandler {
+
+ public static final Logger logger = LoggerFactory.getLogger(CASLogoutSuccessHandler.class);
+
+ private String casUrl;
+ private String defaultTarget;
+
+ private RedirectStrategy redirectStrategy = new DefaultRedirectStrategy();
+
+ @Override
+ public void onLogoutSuccess(HttpServletRequest request,
+ HttpServletResponse response, Authentication authentication)
+ throws IOException, ServletException {
+
+ String referer = request.getHeader("referer");
+ if (response.isCommitted()) {
+ logger.info("Response has already been committed. Unable to redirect to target");
+ return;
+ }
+ redirectStrategy.sendRedirect(request, response,
+ (casUrl + "/logout?url=") + (referer != null ? referer : defaultTarget));
+
+ }
+
+ public void setCasUrl(String casUrl) {
+ this.casUrl = casUrl;
+ }
+
+ public void setDefaultTarget(String defaultTarget) {
+ this.defaultTarget = defaultTarget;
+ }
+}
diff --git a/src/main/java/de/thm/arsnova/LoginController.java b/src/main/java/de/thm/arsnova/LoginController.java
index 2014662a31c331738e705456ffca064ac044e30d..7dacb38dabca1453ab9150a964b437da46bf003f 100644
--- a/src/main/java/de/thm/arsnova/LoginController.java
+++ b/src/main/java/de/thm/arsnova/LoginController.java
@@ -118,6 +118,7 @@ public class LoginController {
public View doLogout(final HttpServletRequest request) {
Authentication auth = SecurityContextHolder.getContext().getAuthentication();
request.getSession().invalidate();
+ SecurityContextHolder.clearContext();
if (auth instanceof CasAuthenticationToken) {
return new RedirectView("/j_spring_cas_security_logout");
}
diff --git a/src/main/webapp/WEB-INF/spring/spring-security.xml b/src/main/webapp/WEB-INF/spring/spring-security.xml
index a53a82159bcce00e07b58294930dacff5cf8528b..40e16c9403d8c9522bd3e985d925e8aef9d61737 100644
--- a/src/main/webapp/WEB-INF/spring/spring-security.xml
+++ b/src/main/webapp/WEB-INF/spring/spring-security.xml
@@ -116,14 +116,17 @@
<bean id="requestSingleLogoutFilter"
class="org.springframework.security.web.authentication.logout.LogoutFilter"
- p:filterProcessesUrl="/j_spring_cas_security_logout" >
- <constructor-arg value="${security.cas-server-url}/logout?url=${security.arsnova-url}"/>
- <constructor-arg>
- <bean class=
- "org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler"/>
- </constructor-arg>
+ p:filterProcessesUrl="/j_spring_cas_security_logout">
+ <constructor-arg ref="casLogoutSuccessHandler" />
+ <constructor-arg>
+ <bean class="org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler"/>
+ </constructor-arg>
</bean>
+ <bean id="casLogoutSuccessHandler" class="de.thm.arsnova.CASLogoutSuccessHandler"
+ p:casUrl="${security.cas-server-url}"
+ p:defaultTarget="${security.arsnova-url}"/>
+
<bean id="successHandler" class="de.thm.arsnova.LoginAuthenticationSucessHandler"
p:targetUrl="#auth/checkLogin"/>