On 15/11/2010 11:03, Amol Puglia wrote: > at > org.apache.catalina.session.StandardSessionFacade.getAttributeNames(StandardSessionFacade.java:120) > at com.ericsson.mars.jspbean.LoginBean.logout(LoginBean.java:2366) > at > com.ericsson.mars.jspbean.LoginBean.valueUnbound(LoginBean.java:2450)
The problem is in your HttpSessionBindingListener LoginBean, it appears to be operating on the session object after the session has been invalidated. I don't know whether this could take Tomcat down, unless you've included* a System.exit call in a catch - which seems to be popular again all of a sudden. p * which is A Really Bad Idea.
0x62590808.asc
Description: application/pgp-keys
signature.asc
Description: OpenPGP digital signature
