I'm using a
jsp page to invalidate the session that stores the user's credentials, then every other jsp in the webapp tests for the users credentials and forwards the user to the login page if these aren't in the session. This doesn't seem to work though if the user logs out and then uses the 'Back' button. Is there a way to prevent them seeing any pages at all, even cached ones, after they've logged out?
Thanks a lot, in advance.