问题是会话范围bean在达到会话超时之前不会被销毁。
因此,我对以下注销程序有两个问题:
page.xhtml:
<p:commandLink ajax="false" actionListener="#{myOtherBean.logout}" />
豆:
@Named
@SessionScoped
public class mySessionBean implements Serializable {
}
@Named
@SessionScoped
public class myOtherBean extends Observable implements Serializable {
@Inject
private Subject subject;
public void logout(){
subject.logout();
// this line throws the exception
FacesContext.getCurrentInstance().getExternalContext().invalidateSession();
FacesContext.getCurrentInstance().getExternalContext()
.redirect(servlet.getContextPath() + "/logout");
}
}
shiro.ini:
[main] sessionManager = org.apache.shiro.web.session.mgt.DefaultWebSessionManager securityManager.sessionManager = $sessionManager sessionDAO = org.apache.shiro.session.mgt.eis.EnterpriseCacheSessionDAO securityManager.sessionManager.sessionDAO = $sessionDAO .... logout=org.apache.shiro.web.filter.authc.LogoutFilter logout.redirectUrl = /login.xhtml .... [urls] /logout = logout
例外:
当我致电FacesContext.getCurrentInstance().getExternalContext().invalidateSession();
java.lang.IllegalStateException: org.apache.shiro.session.UnknownSessionException: There is no session with id [e5939658-c033-4e67-984f-23cadfbc06fb]
其他信息:我正在运行Wildfly 8.2.0.Final。
感谢。
答案 0 :(得分:0)
以下是我在我的项目中使用的代码,这可能是因为你的bean是SessionScoped而且我的是ViewScoped?:
@Named
@ViewScoped
public class Authenticator implements Serializable {
public void logout() {
SecurityUtils.getSubject().logout();
FacesContext.getCurrentInstance().getExternalContext().invalidateSession();
FacesContext.getCurrentInstance().getExternalContext().redirect(LOGIN_URL);
}
}