remove old cookies on logout

author: Alexander Alexeev 2017-04-05 19:14:12 +0700
committer: Alexander Alexeev 2017-04-05 19:14:40 +0700
commit: 6b96d8ba8330dff9b25cb3e00c75c6ea20134ca8 (patch)
tree: 95c66511e3b1bcd081c13e369853c86ccf462ea9 /juick-www/src/main/java/com/juick/www/configuration/WebSecurityConfig.java
parent: 66d3be7862c8525f6f85e387503c6002a00371ee (diff)
1 files changed, 5 insertions, 1 deletions
diff --git a/juick-www/src/main/java/com/juick/www/configuration/WebSecurityConfig.java b/juick-www/src/main/java/com/juick/www/configuration/WebSecurityConfig.java
index d3aa9e81..dde67aa1 100644
--- a/juick-www/src/main/java/com/juick/www/configuration/WebSecurityConfig.java
+++ b/juick-www/src/main/java/com/juick/www/configuration/WebSecurityConfig.java
@@ -55,7 +55,11 @@ public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
                 .and()
                 .sessionManagement().invalidSessionUrl("/")
                 .and()
-                .logout().invalidateHttpSession(true).logoutUrl("/logout").logoutSuccessUrl("/login?logout")
+                .logout()
+                .invalidateHttpSession(true)
+                .logoutUrl("/logout")
+                .logoutSuccessUrl("/login?logout")
+                .deleteCookies("hash", "remember-me")
                 .and()
                 .formLogin()
                 .loginPage("/login")
author	Alexander Alexeev	2017-04-05 19:14:12 +0700
committer	Alexander Alexeev	2017-04-05 19:14:40 +0700
commit	6b96d8ba8330dff9b25cb3e00c75c6ea20134ca8 (patch)
tree	95c66511e3b1bcd081c13e369853c86ccf462ea9 /juick-www/src/main/java/com/juick/www/configuration/WebSecurityConfig.java
parent	66d3be7862c8525f6f85e387503c6002a00371ee (diff)