CustomLogoutSuccessHandler.java
1.89 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
package com.bsth.security.handler;
import java.io.IOException;
import java.util.Date;
import java.util.HashMap;
import java.util.Map;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import com.bsth.common.Constants;
import com.bsth.util.HttpClientUtils;
import com.fasterxml.jackson.databind.ObjectMapper;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.security.core.Authentication;
import org.springframework.security.web.authentication.logout.LogoutSuccessHandler;
import org.springframework.stereotype.Component;
/**
* @author Hill
*/
@Component
public class CustomLogoutSuccessHandler implements LogoutSuccessHandler {
private final static Logger log = LoggerFactory.getLogger(CustomLogoutSuccessHandler.class);
@Value("${sso.http.url.login}")
private String ssoLoginUrl;
@Value("${sso.http.url.logout}")
private String ssoLogoutUrl;
@Override
public void onLogoutSuccess(HttpServletRequest request, HttpServletResponse response, Authentication authentication) throws IOException, ServletException {
HttpSession session = request.getSession();
String token = String.valueOf(request.getSession().getAttribute(Constants.SSO_TOKEN));
Map<String, Object> param = new HashMap<>();
param.put("Authorization", String.format("Bearer %s", token));
try {
request.getSession().invalidate();
StringBuilder sb = HttpClientUtils.post(ssoLogoutUrl, "", param);
log.error(String.format("注销token:%s,返回结果:%s", token, sb.toString()));
} catch (Exception e) {
log.error("注销token异常", e);
} finally {
response.sendRedirect(ssoLoginUrl);
}
}
}