Current scope: all classes | org.kitodo.production.security

Coverage Summary for Class: CustomLogoutSuccessHandler (org.kitodo.production.security)

Class Class, % Method, % Line, %
CustomLogoutSuccessHandler 0% (0/1) 0% (0/2) 0% (0/9) 


 /*
  * (c) Kitodo. Key to digital objects e. V. <contact@kitodo.org>
  *
  * This file is part of the Kitodo project.
  *
  * It is licensed under GNU General Public License version 3 or later.
  *
  * For the full copyright and license information, please read the
  * GPL3-License.txt file that was distributed with this source code.
  */
 
 package org.kitodo.production.security;
 
 import java.io.IOException;
 import java.util.Objects;
 
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 
 import org.kitodo.production.services.ServiceManager;
 import org.springframework.security.core.Authentication;
 import org.springframework.security.core.userdetails.UserDetails;
 import org.springframework.security.web.DefaultRedirectStrategy;
 import org.springframework.security.web.RedirectStrategy;
 import org.springframework.security.web.authentication.logout.LogoutSuccessHandler;
 import org.springframework.security.web.authentication.logout.SimpleUrlLogoutSuccessHandler;
 
 /**
  * This class was made to perform an expiration of users session on logout. The session of the user
  * is than not listed anymore as active immediately after logout.
  */
 public class CustomLogoutSuccessHandler extends SimpleUrlLogoutSuccessHandler implements LogoutSuccessHandler {
 
     private final String onSuccessUrl;
     private final RedirectStrategy redirectStrategy = new DefaultRedirectStrategy();
 
     public CustomLogoutSuccessHandler(String onSuccessUrl) {
         this.onSuccessUrl = onSuccessUrl;
     }
 
     @Override
     public void onLogoutSuccess(HttpServletRequest request, HttpServletResponse response, Authentication authentication)
             throws IOException {
         if (Objects.nonNull(authentication) && Objects.nonNull(authentication.getDetails())) {
             Object principal = authentication.getPrincipal();
             if (principal instanceof UserDetails) {
                 UserDetails user = (UserDetails) principal;
                 ServiceManager.getSessionService().expireSessionsOfUser(user);
             }
         }
         redirectStrategy.sendRedirect(request, response, onSuccessUrl);
     }
 }
generated on 2023-05-12 13:55