Classification: UNCLASSIFIED
Caveats: NONE
My fault, I forgot to mention that I am using struts. The code is below
public ActionForward execute(ActionMapping mapping,
ActionForm form, HttpServletRequest request, HttpServletResponse
response)
throws Exception
{
HttpSession session = request.getSession();
session.setAttribute("pageTitle", "Logout Action");
session.removeAttribute("userId");
session.removeAttribute("access");
session.removeAttribute("tempId");
session.removeAttribute("oldpassword");
UserList.getInstance().removeUser(session.getId());
session.invalidate();
// Forward control to this Action's forward page.
return mapping.findForward("login");
}
Let's say that I ran a report, I logged out, if I hit the back button, it
takes right into the report I ran before logging out.
For security issues, the session to be destroyed and if the user tries to go
back, I want to display session has expired.
Thanks for your input.
Fadi Samara
Classification: UNCLASSIFIED
Caveats: NONE
