we have already put following headers -
response.setHeader("Cache-Control","no-cache,no-store");
response.setHeader("Pragma","no-cache");
response.setDateHeader ("Expires", -1);
but its not working. after refreshing the page, it submits the login details.
we are also thinking of using token, but its a lengthy process to do it on every hyperlink in the applications
..loooking for some samller route to implement it
Thanks a ton for your inputs.