I got around this by just removing j_password and j_username from the sessionid.
HttpSession sessionid = request.getSession(false);
sessionid.removeValue("j_password");
sessionid.removeValue("j_username");
"Dunlop, Aaron" wrote:
I seem to be having a similar problem. My app also uses
session in
Title: Re: TC3.3m1 Possible bug with session.invalidate
The place to look is
src/share/org/apache/tomcat/modules/session/SimpleSessionStore.java. Or,
better, get the latest version of this file since the bug was fixed about two
weeks ago.
- Original Message -
From:
Dunlop
Title: Re: TC3.3m1 Possible bug with session.invalidate
I seem to be having a similar problem. My app also uses session information to track
logins, and calls session.invalidate() when a user logs out.
So far I'm seeing that if a user starts up a new browser, logs in, logs out
Hi,
I seem to be having a problem with session.invalidate(). I'm using this for
users to log out of my web site but it seems to take two attemps before the user
is properly logged out!
I am using JDBCRealms for authentication BTW.
I have set up a simple four page web site:
test/jsp/index.jsp -
