i am developing an application using
struts 1.2. i have a admin login page(AdminId , Password) .i have set scope="session" in struts-config.xml file for the adminLogin action mapping, so i can access the AdminId in consequentive pages like AddEmployee.jsp, AddProduct.jsp.
when i logout i should not be able to access AddEmployee.jsp, AddProduct.jsp by directly specifying in the browser or use back button to go to these pages . but i still can access these pages
can any one tell me some code or way to end a session . the session is set using the struts-config.xml file.
The below code is used to set the session for the admin login
<action path="/AdminLoginPath"
type="org.admin.dev.AdminLoginAction"
name="AdminLoginFormBean" scope="session"
input="/AdminLogin.jsp"> <forward name="Login"
path="/AdminWorkPage.jsp" /> <forward name="HomePage"
path="/index.jsp" />
</action>