Win a copy of Cross-Platform Desktop Applications: Using Node, Electron, and NW.js this week in the JavaScript forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic

JSP/Servlet  RSS feed

 
Anjali Tendulkar
Greenhorn
Posts: 1
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi,
In my web application using servlets and JSP,
I am creating a session on logging in.
I want to kill the session on logout
so even if the user uses the browser's back button to
navigate to the previous pages they should not be able to
access any information.
As suggested, I am using a
session.invalidate() to kill the session,
but is not working.
Any suugestions as to how to tackle this problem.
Thanks
Anjali.
 
BJ Grau
Ranch Hand
Posts: 234
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Can you give a specific example of what it is the user is still able to do after the session has been invalidated?
 
William Brogden
Author and all-around good cowpoke
Rancher
Posts: 13078
6
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The invalidate works for me - are you sure it is getting called?
Bill
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!