If you are using BASIC authentication, it will never work because of the way browsers work.
[]s Michael Nascimento Santos JSR-207 Expert Group Member Sun Certified Programmer for the Java 2 Platform Sun Certified Programmer for the Java 2 Platform 1.4 Sun Certified Web Component Developer for J2EE Moderador SouJava - www.soujava.org.br ----- Original Message ----- From: "Ionel Gardais" <[EMAIL PROTECTED]> To: "Struts Users Mailing List" <[EMAIL PROTECTED]> Sent: Wednesday, July 30, 2003 11:47 AM Subject: request.getSession().invalidate() problem > Hi, > > I am using the invalidate() method to force logout of the logged client > but even after a call to this method, clients can navigate to a secured > content without beeing prompt for their password. > > Do you know what the problem is and/or how to solve it ? > > thanks, > ionel > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
