From a9ce93d8b548f60dfdc026887d2233fd0a6c0a1f Mon Sep 17 00:00:00 2001 From: king_0417 <73704053+gywns0417@users.noreply.github.com> Date: Mon, 5 Aug 2024 18:19:58 +0900 Subject: [PATCH] =?UTF-8?q?fix:=20=EB=A1=9C=EA=B7=B8=EC=95=84=EC=9B=83=20S?= =?UTF-8?q?ecurityConfig=20=EC=84=A4=EC=A0=95?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../com/chzzk/cushion/global/config/SecurityConfig.java | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/src/main/java/com/chzzk/cushion/global/config/SecurityConfig.java b/src/main/java/com/chzzk/cushion/global/config/SecurityConfig.java index c9cd815..a872fe3 100644 --- a/src/main/java/com/chzzk/cushion/global/config/SecurityConfig.java +++ b/src/main/java/com/chzzk/cushion/global/config/SecurityConfig.java @@ -17,6 +17,7 @@ import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder; import org.springframework.security.web.SecurityFilterChain; import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter; +import org.springframework.security.web.util.matcher.AntPathRequestMatcher; import org.springframework.web.cors.CorsConfiguration; import org.springframework.web.cors.CorsConfigurationSource; import org.springframework.web.cors.CorsUtils; @@ -64,7 +65,12 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception { .oauth2Login(oauth2 -> oauth2 .userInfoEndpoint(userInfoEndpointConfig -> userInfoEndpointConfig.userService(customOAuth2UserService)) .successHandler(customSuccessHandler) - ); + ) + .logout(logout -> logout + .logoutRequestMatcher(new AntPathRequestMatcher("/members/logout")) + .logoutSuccessUrl("/") + .deleteCookies("Authorization", "refreshToken", "JSESSIONID", "accessToken") + .invalidateHttpSession(true)); return http.build(); }