Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-07-06 18:52:13 +00:00
Code Issues Packages Projects Releases Wiki Activity

LogoutWebFilter supports anonymous users

Browse Source 
Fixes gh-4540
This commit is contained in:
Rob Winch 2017-09-13 17:03:40 -05:00
parent 5baf71f4a0
commit 5fd84a62b5
1 changed files with 7 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
webflux/src/main/java/org/springframework/security/web/server/authentication/logout/LogoutWebFiter.java
View File

@ -47,7 +47,13 @@ public class LogoutWebFiter implements WebFilter {
return this.requiresLogout.matches(exchange)
.filter( result -> result.isMatch())
.switchIfEmpty(chain.filter(exchange).then(Mono.empty()))
.flatMap( result -> exchange.getPrincipal().cast(Authentication.class))
.flatMap( result -> authentication(exchange))
.flatMap( authentication -> this.logoutHandler.logout(new WebFilterExchange(exchange, chain), authentication));
}
private Mono<Authentication> authentication(ServerWebExchange exchange) {
return exchange.getPrincipal()
.cast(Authentication.class)
.defaultIfEmpty(this.anonymousAuthenticationToken);
}
}