i tried with javascript and it worked fine for me but still i believe that this is not the best solutions and as mentioned above if javascript is disabled the solution will no longer work
so i have to look in to some other solution like setting pragma or cache-control will do? i am just removing the userobject from the session but not invalidating the session. i am not setting any header on response till now. Thanks Paweł for the detailed description, i will look in all the aspect as described by you and will share my findings. -shekher On 1/20/09, Nils-Helge Garli Hegvik <nil...@gmail.com> wrote: > > Did you invalidate the session? Are you setting no cache headers on > the response? > > Nils-H > > On Tue, Jan 20, 2009 at 12:46 PM, shekher awasthi > <shekher.awas...@gmail.com> wrote: > > Hi All, > > > > in the process of developing application using struts 2.0.11, i came > across > > the problem of handling browser back/forward button. > > > > This problem is occurring when we will logout the user.On Clicking the > > logout button we are currently removing the user from the session > > > > and it worked fine for us. After the successful logout process user will > be > > redirected to the index page(which have the login field), > > > > but when user hits the browser back button he is getting himself there in > > the secure page even we have remove the user object from the session > > > > below is the code we are using for removing the user > > > > session.remove(BSConstant.USER); > > > > i am clueless where we are doing wrong , as we think we are having two > > points > > > > 1) Either the user is not getting removed from the session,but the > chances > > are very less as for all other call after logout it is forcing the user > to > > login first. > > > > 2) Back button handling is not there > > > > my question is, Is there any way in struts2 to handle browser > back/forward > > button or do i need to use some other technique like > > > > setting response header > > > > any suggestion in this regard will be much appreciated. > > > > -s > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: user-unsubscr...@struts.apache.org > For additional commands, e-mail: user-h...@struts.apache.org > >
