[#APF-566] LogoutFilter return a 404 on Websphere 6.0.2 - AppFuse JIRA

AppFuse

LogoutFilter return a 404 on Websphere 6.0.2

Created: 07/Jan/07 11:29 PM Updated: 23/Jan/07 04:54 PM Resolved: 23/Jan/07 04:54 PM

Component/s:

Application Servers, Security

Affects Version/s:

1.9.3

Fix Version/s:

1.9.5, 2.0-M3

Environment:

Windows Xp + Websphere 6.0.2.0 + IBM JDK/JRE 1.4.2

Description

« Hide

When I click logout.jsp, it returns a 404.

However, acegi sample app logouot work on websphere 6.0.2

Matt suggest the following temp solution:

Remove logoutFilter from security.xml (as a bean definition and in the filterChain) and
replace it with a web/logout.jsp page that has the following:

<%@ include file="/common/taglibs.jsp"%>
<%@ page import="javax.servlet.http.Cookie" %>
<%@ page import="org.acegisecurity.ui.rememberme.TokenBasedRememberMeServices"
%>

<%
session.invalidate();
Cookie terminate = new
Cookie(TokenBasedRememberMeServices.ACEGI_SECURITY_HASHED_REMEMBER_ME_COOKIE_KEY,
null);
terminate.setMaxAge(0);
response.addCookie(terminate);
%>

<c:redirect url="/mainMenu.html"/>

Sort Order:

There are no comments yet on this issue.