For some reason your redirect does not work. Maybe session is not
invalidated as well? Is this piece of code ever evaluated?
Michael.
On 12/16/05, Priya Saloni <[EMAIL PROTECTED]> wrote:
> Hi there,
>
> I facing a BIG problem in my struts based application.When i logout my
> website and hit back button it showing a page like the following
>
> //
> Warning: Page has Expired
> The page you requested was created using information you submitted in a
> form. This page is no longer available. As a security precaution, Internet
> Explorer does not automatically resubmit your information for you.
>
> To resubmit your information and view this Web page, click the
> *Refresh*button.
>
>
> //
>
> When i refresh the page its showing the secured web pages too.My code in
> LogoutAction is as follows
>
> request.getSession().removeAttribute("sessionState");
> request.getSession().invalidate();
> response.sendRedirect("/BMS/logout_success.jsp");
>
> sessionState is the VO where iam keeping all the objects i want to keep in
> session..Is there any way in struts to make sure that it won't display the
> page like above..
>
> Thanks
>
> Priya.
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
