Put HttpServletRequest#logout() in separate try/catch block.

2013-10-28 16:07:28 -04:00 · 2013-10-28 16:07:28 -04:00 · 92fbf3fcc0
parent e494ac5cf6
commit 92fbf3fcc0
1 changed files with 4 additions and 2 deletions
--- a/cas-client-core/src/main/java/org/jasig/cas/client/session/SingleSignOutHandler.java
+++ b/cas-client-core/src/main/java/org/jasig/cas/client/session/SingleSignOutHandler.java
@ -175,11 +175,13 @@ public final class SingleSignOutHandler {

                try {
                    session.invalidate();
+                } catch (final IllegalStateException e) {
+                    logger.debug("Error invalidating session.", e);
+                }
+                try {
                    request.logout();
                } catch (final ServletException e) {
                    logger.debug("Error performing request.logout.");
-                } catch (final IllegalStateException e) {
-                    logger.debug("Error invalidating session.", e);
                }
            }
        }