Update logout (#7447)

alexisluque · davidpatrick · commit c12c931015c3 · 2019-04-08T11:08:01.000-07:00
diff --git a/articles/quickstart/webapp/java-spring-security-mvc/01-login.md b/articles/quickstart/webapp/java-spring-security-mvc/01-login.md
@@ -14,6 +14,8 @@ useCase: quickstart
 ---
 <%= include('../_includes/_getting_started', { library: 'Java Spring Security', callback: 'http://localhost:3000/callback' }) %>
 
+<%= include('../../../_includes/_logout_url') %>
+
 <%= include('_includes/_setup') %>
 
 <%= include('_includes/_login') %>
diff --git a/articles/quickstart/webapp/java-spring-security-mvc/_includes/_login.md b/articles/quickstart/webapp/java-spring-security-mvc/_includes/_login.md
@@ -68,6 +68,11 @@ Next, define the rules that will prevent unauthenticated users to access our pro
 ```java
 // src/main/java/com/auth0/example/security/AppConfig.java
 
+@Bean
+public LogoutSuccessHandler logoutSuccessHandler() {
+    return new LogoutController();
+}
+
 @Override
 protected void configure(HttpSecurity http) throws Exception {
     http.csrf().disable();
@@ -76,7 +81,7 @@ protected void configure(HttpSecurity http) throws Exception {
             .antMatchers("/callback", "/login").permitAll()
             .antMatchers("/**").authenticated()
             .and()
-            .logout().permitAll();
+            .logout().logoutSuccessHandler(logoutSuccessHandler()).permitAll();
     http.sessionManagement().sessionCreationPolicy(SessionCreationPolicy.NEVER);
 }
 ```
@@ -100,11 +105,15 @@ To authenticate the users you will redirect them to the login page which uses [L
 
 @RequestMapping(value = "/login", method = RequestMethod.GET)
 protected String login(final HttpServletRequest req) {
-    String redirectUri = req.getScheme() + "://" + req.getServerName() + ":" + req.getServerPort() + "/callback";
-    String authorizeUrl = controller.buildAuthorizeUrl(req, redirectUri)
-        .withAudience(String.format("https://%s/userinfo", appConfig.getDomain()))
-        .build();
-    return "redirect:" + authorizeUrl;
+    String redirectUri = req.getScheme() + "://" + req.getServerName();
+        if ((req.getScheme().equals("http") && req.getServerPort() != 80) || (req.getScheme().equals("https") && req.getServerPort() != 443)) {
+            redirectUri += ":" + req.getServerPort();
+        }
+        redirectUri += "/callback";
+        String authorizeUrl = controller.buildAuthorizeUrl(req, redirectUri)
+                .withAudience(String.format("https://%s/userinfo", appConfig.getDomain()))
+                .build();
+        return "redirect:" + authorizeUrl;
 }
 ```
 
