Now let’s implement the UI when the user is successfully logged in
-
edit
index.html, change theauthenticateddiv tag<div ng-show="home.authenticated"> <img ng-src="{{home.user.avatarUrl}}" width="150" height="150" class="img-circle"/> <p class="text-success"> Welcome <span ng-bind="home.user.name"></span> </p> <div> <button ng-click="home.logout()" class="btn btn-primary btn-block">Logout</button> </div> </div>
-
implement the logout button
angular.module("app", []).controller("home", function ($http, $location) { var self = this; $http.get("/me").success(function (data) { self.user = data.details; self.authenticated = true; }).error(function () { self.user = ""; self.authenticated = false; }); // add following self.logout = function () { $http.post('/logout', {}).success(function () { self.authenticated = false; $location.path("/"); }).error(function (data) { self.authenticated = false; }); }; });
-
remember to reload the app
-
What happens when you click the
Logoutbutton? make sure you turn on your browser’s inspector
-
Let’s go to fix that, add csrf config into the WebSecurityConfigurerAdapter
http // ignore many lines for brevity // add this line .and().csrf().csrfTokenRepository(CookieCsrfTokenRepository.withHttpOnlyFalse());
-
Now reload your app to see the logout button working
-
[optional] Experiment
-
logout from springular
-
Go to https://github.com/settings/applications to revoke the access
-
access http://localhost:8080/ and
Login with Github -
Now you can see you back to the page where github asks your consent
-
