tags:

views:

43

answers:

2
Q: 

Why session.invalidate doesn't work in IE browser ?

I implemented a sevlet filter in my application, and within the filter, if I find some specific url pattern, I will use request.getSession().invalidate() to logout and clear the session, then redirect to a login page.

session.invalidate();
session.setAttribute("hi", true);
response.sendRedirect("login.jsp");

but I found, after that I enter username and password, then submit the login form, the previous session seems not be completely cleared.

So is it possible to let me completely clear out the session and just like start a new IE instance ?(BTY, my code works in FF and Chrome).

+1  A: 

The session is a server-side concept. The browser only hold a jsessionid to tell the server which session object to fetch for this request.

That said, your problem is not IE. And even if it is, it is some sort of caching the you are facing. Clear your cache. You can set these response headers:

Cache-Control: no-cache, no-store
Pragma: no-cache
Bozho  2010-10-26 08:55:06
I know this too, but the problem is I can not clear the cache at server side.
MemoryLeak  2010-10-26 08:56:08
I meant client-side cache
Bozho  2010-10-26 09:00:13
yeah, it's client side cache, I can not clear client-side cache at server side, and it's ridiculous to ask the user to clear the cache after logout, right ?
MemoryLeak  2010-10-26 09:02:24
you can send headers that instruct the browser not to cache. See updated
Bozho  2010-10-26 09:07:26
I tried, but not work ... Could you please have a look at my comment under my question , that is the more specific problem.
MemoryLeak  2010-10-26 09:10:35
A: 

@Bozho a quick question to clarify. JSP has default session implict object created. Here in this case ,he created a session and then invalidates , after invalidation , he sets the attributes which again uses implicit session created.

Suresh S  2010-10-26 11:35:25

related questions

Java Time Zone is messed up
Eclipse on win64
Automate builds for Java RCP for deployment with JNLP
Why are professors or schools picking Java over C++ to teach to students?
Is there a real benefit of using J#?
Public/Popular Websites using JavaServer Faces
Why can't I use a try block around my super() call?
Accessing post variables using Java Servlets
Personal Linux web server
Is this really widening vs autoboxing?
How can I Java webstart multiple, dependent, native libraries?
Why can't I call toString() on a Java primitive?
How do I use Java to read from a file that is actively being written?
What code analysis tools do you use for your Java projects?
IllegalArgumentException or NullPointerException for a null parameter?
How do I configure and communicate with a serial port?
What is the best way to parse strings in Java
Getting started with a custom JXTA PeerGroup
Creating a custom button in Java
How to get started "writing" a code coverage tool?
Which Build-/Configuration Management Tool?
What is the difference between an int and an Integer in Java/C#?
What is the meaning of the type safety warning in certain Java generics casts?
How would you access Object properties from within an object method?
Converting CSV File to XML in Java