Either the browser doesn't kill cookie on close or she has cookies disabled, had url with session id encoded and returned back to that url while the session was still active server side.
-Matej On Fri, Sep 19, 2008 at 9:34 PM, James Carman <[EMAIL PROTECTED]>wrote: > Are they closing all instances of the browser? > > On Fri, Sep 19, 2008 at 3:30 PM, insom <[EMAIL PROTECTED]> wrote: > > > > Does anyone know how a browser would find a pre-existing session after > being > > closed and reopened? I got a call from a user today who is able to stay > > logged in, even after she closes her browser. > > > > I had thought that closing a browser essentially destroys that user's > > session (at least from the client's perspective.) I've tested this > > elsewhere, and it sends me back to the login screen when I reopen the > > browser, the way it's supposed to. > > > > I appreciate any suggestions you've got. I've checked that she isn't > using a > > URL with a sessionid included. I'm using SWARM for authentication on the > > site. Thanks! > > -- > > View this message in context: > http://www.nabble.com/Kill-session-on-closing-browser-tp19578217p19578217.html > > Sent from the Wicket - User mailing list archive at Nabble.com. > > > > > > --------------------------------------------------------------------- > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > >
