That's if it's a session cookie, is it? You can always use the Cookie API to force the cookie to expire.
-----Original Message----- From: Mike Curwen [mailto:[EMAIL PROTECTED] Sent: Friday, April 16, 2004 9:56 AM To: 'Tomcat Users List' Subject: RE: How to really destroy a Session The cookie is removed when the user closes the browser, no ? > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] > Sent: Friday, April 16, 2004 8:34 AM > To: [EMAIL PROTECTED] > Subject: How to really destroy a Session > > > > > > > Hi all, > > I am using Tomcat 5.0.19. > > In my application the generated sessions are identified by a > cookie on the client. I only allow single sign on. Now I want > to destroy the session and I call in a session an > invalidate() and the session isn't available. Then the > application redirect the request to the start page. But > there is still the cookie with JSESSIONID on the client and > there is no new session possible. > > Is there a solution to remove these cookies? > > Thanks, > Marc > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]