This should be better handled by the application if setting the response header does not work. You would anyways be clearing session data associated with the logged in user in the logout Action. Check for that and handle appropriately.
But how did the elephant get like that? What did you do? I think all we can do now is read this tiny ad:
Free, earth friendly heat - from the CodeRanch trailboss