You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Making the keepAliveUrl method configurable would be nice too. The current method, POST for keepAlive is counter-intuitive since this request is supposed to be innocuous.
One more request while we're talking about adding post support...
Can we get the option to submit the post with additional request parameters? I'm using Spring Security w/ CSRF protection and need to send the csrf nonce with the logout post.
Support for submitting a POST when session times out is actually required by the Spring Security CSFR code. Do you think that POST support could be implemented anytime soon?
There are some good arguments for making logout requests use the POST method. See: http://stackoverflow.com/questions/3521290/logout-get-or-post
The text was updated successfully, but these errors were encountered: