Asif Jan a �crit : > The probelm is that when I log out and then press back button my > browsers asks for refreshing the page from server , when I do that I > logged on as the last logged in user.
I'm not sure, but if in your precedent page the user just logged in using the top form, then you'll have no way to bypass this. It's a "feature" from web browsers that are able to resend forms when you click back. Although if it's not the case, if the user logged out after using the portal for some time, and then just clicking once "back" get you back logged in, then there is a bug. That seems weird. > I have tried to remove username login jsessionid cookies from > requests in Logout action . But still there is no change in the > behaviuor . > > > What I need is that when a user logs out , his complete information > shall be destroyed then and there and when ever some one presses the > browser back button , he shall be treated as a new user . Maybe adding this in the logout may work : request.getSession().invalidate() --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
