Reputation: 57162
Grails Spring Security plugin url
The Grails Spring Security plugin docs shows these two properties related to logout urls (copied from https://github.com/grails-plugins/grails-spring-security-core/blob/master/src/docs/guide/13%20URL%20Properties.gdoc)
logout.afterLogoutUrl | '/' | URL for redirect after logout.
logout.filterProcessesUrl | '/j_spring_security_logout' | Logout URL, intercepted by Spring Security filter.
When I run the s2-quickstart script to generate the LogoutController, the default behavior is to redirect to logout.filterProcessesUrl.
What is the purpose of logout.afterLogoutUrl if the LogoutController does not redirect to it?
Upvotes: 0
Views: 1979
Answers (1)
Reputation: 35961
Spring Security introduces some filters, Java filters, not Grails. This filters do all authentication job, see http://static.springsource.org/spring-security/site/docs/3.1.x/reference/security-filter-chain.html
logout.filterProcessesUrl handled by Spring Security filter, and after cleanup (removes user from current context, etc) it redirects to logout.afterLogoutUrl.
LogoutController does nothing, just redirects to filter. You can redirect user to this user in your own controller, or even put <a link to such url
Upvotes: 2
Related Questions
- 404 when do logout in Spring Security Rest Plugin for Grails
- Grails Spring Security Rest Logout
- Grails Spring Security GET logout adds two slashes to URL
- logout api error - Rest Spring Security Plugin in Grails
- grails spring security redirect after logout
- Grails Spring Security Plugin - Custom Login and Logout URL, Controller, and GSP
- Grails Spring Security plugin: logout not working
- Grails Redirect Post-Logout Using spring-security-core-3.0.6+
- Grails Spring Security Plugin: Logon directly from the controller
- Grails Spring security core pre-logout