View Javadoc
1   /*
2    * Licensed to the Apache Software Foundation (ASF) under one
3    * or more contributor license agreements.  See the NOTICE file
4    * distributed with this work for additional information
5    * regarding copyright ownership.  The ASF licenses this file
6    * to you under the Apache License, Version 2.0 (the
7    * "License"); you may not use this file except in compliance
8    * with the License.  You may obtain a copy of the License at
9    *
10   *   http://www.apache.org/licenses/LICENSE-2.0
11   *
12   * Unless required by applicable law or agreed to in writing,
13   * software distributed under the License is distributed on an
14   * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
15   * KIND, either express or implied.  See the License for the
16   * specific language governing permissions and limitations
17   * under the License.
18   */
19  package org.apache.syncope.sra.security.cas;
20  
21  import java.net.URI;
22  import org.apache.commons.lang3.StringUtils;
23  import org.apache.syncope.sra.SessionConfig;
24  import org.apache.syncope.sra.security.web.server.DoNothingIfCommittedServerRedirectStrategy;
25  import org.springframework.cache.CacheManager;
26  import org.springframework.security.core.Authentication;
27  import org.springframework.security.web.server.ServerRedirectStrategy;
28  import org.springframework.security.web.server.WebFilterExchange;
29  import org.springframework.security.web.server.authentication.logout.ServerLogoutHandler;
30  import reactor.core.publisher.Mono;
31  
32  public class CASServerLogoutHandler implements ServerLogoutHandler {
33  
34      private final ServerRedirectStrategy redirectStrategy = new DoNothingIfCommittedServerRedirectStrategy();
35  
36      private final CacheManager cacheManager;
37  
38      /**
39       * The URL to the CAS Server logout.
40       */
41      private final String casServerLogoutUrl;
42  
43      public CASServerLogoutHandler(final CacheManager cacheManager, final String casServerUrlPrefix) {
44          this.cacheManager = cacheManager;
45          this.casServerLogoutUrl = StringUtils.appendIfMissing(casServerUrlPrefix, "/") + "logout";
46      }
47  
48      @Override
49      public Mono<Void> logout(final WebFilterExchange exchange, final Authentication authentication) {
50          return exchange.getExchange().getSession().
51                  flatMap(session -> {
52                      cacheManager.getCache(SessionConfig.DEFAULT_CACHE).evictIfPresent(session.getId());
53  
54                      return session.invalidate().then(
55                              redirectStrategy.sendRedirect(exchange.getExchange(), URI.create(this.casServerLogoutUrl)));
56                  }).onErrorResume(Mono::error);
57      }
58  }