private void logoutSession(Session session) { if (session == null) return; String userName = session.getOwner(); if (userName == null) return; Set<Long> userSessionIds = loginedUserSessions.get(userName); if (userSessionIds == null) return; userSessionIds.remove(session.getSessionId()); if (userSessionIds.size() == 0) { // 清理该user的mgmt scope,permission cache loginedUserSessions.remove(userName); mgmtScopeManager.removeUserMgmtScope(userName); userPermissionTree.removeUserMoPermission(userName); } }