To prevent user to go back after logout i used following code in home.jsp
page
<%
if (session.getAttribute("authe") != null && session.getAttribute("authe").equals(true)) {
}
else {
response.sendRedirect("login.jsp");
}
%>
and I invalidated the session in logout.jsp
.
It worked fine but when I pressed back button after logout it still goes to home page but after reloading that home page it moves to the login page.
I thought it it due to the browser default action.
How to make it to work effectively?
Best Answer
In
home.jsp
put header asno-cache
: