hihi,
the back button is the bane of all web developers.
expiring the page cache only forces the user to re-post the page. to
get what you want you need to kill the current session by calling
session.invalidate(). the hard part is figuring out how/when to call
this in your web app to get the behaviour you want.
woodchuck
--- Mark <[EMAIL PROTECTED]> wrote:
> I have the following scenario that I am testing.
>
> 1. Go to www.yahoo.com(or wherever)
> 2. Type in URL of Servlet1 and log in using username/password
> 3. Once username/password is authenticated, get forwarded to Servlet2
> 4. Click browser back button all the way to www.yahoo.com
> 5. Click browser forward button to Servlet2
>
> Is there any way of ensuring that users cannot "forward" to Servlet2,
> but have to login again? I have tried to disable caching that this
> does not solve the problem.
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
____________________________________________________
Start your day with Yahoo! - make it your home page
http://www.yahoo.com/r/hs
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
