Mirrors/vaadin-framework
1
0
Fork 0
mirror of https://github.com/vaadin/framework.git synced 2024-07-27 20:20:26 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity
4a58876ee5
vaadin-framework/documentation/articles/HandlingLogout.asciidoc
Henri Muurimaa 9c371bd38e Add headers to community articles (#10028)
2017-09-20 11:02:36 +03:00

36 lines
1.2 KiB
Plaintext
Raw Blame History

---
title: Handling Logout
order: 21
layout: page
---
[[handling-logout]]
Handling logout
---------------
What should happen the user wants to log out from a Vaadin application
depends on how the user is stored when the user logged in.
If the user information is stored in the `VaadinSession`, that session
should be closed using its `close()` method. If the information on the
other hand is stored in the `HttpSession` or `PortletSession`, then that
session should be invalidated using the `invalidate()` method in Vaadin's
`WrappedSession` that represents either underlying session type.
Aside from removing the user's information, the user should also be
redirected to a logout page to avoid keeping the UI open in the browser
after all server-side information about is has been removed.
[source,java]
....
private void logout() {
// Close the VaadinServiceSession
getUI().getSession().close();
// Invalidate underlying session instead if login info is stored there
// VaadinService.getCurrentRequest().getWrappedSession().invalidate();
// Redirect to avoid keeping the removed UI open in the browser
getUI().getPage().setLocation(getLogoutPageLocation());
}
....
Reference in New Issue View Git Blame Copy Permalink