This week's giveaway is in the EJB and other Java EE Technologies forum.
We're giving away four copies of EJB 3 in Action and have Debu Panda, Reza Rahman, Ryan Cuprak, and Michael Remijan on-line!
See this thread for details.
The moose likes Servlets and the fly likes Problem with session Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of EJB 3 in Action this week in the EJB and other Java EE Technologies forum!
JavaRanch » Java Forums » Java » Servlets
Bookmark "Problem with session" Watch "Problem with session" New topic
Author

Problem with session

Rajkumar balakrishnan
Ranch Hand

Joined: May 29, 2008
Posts: 445

Hi friends,
I develop an web application using JSP/Servlets. Where there are three types of users are there(Admin,Customer,Vendor).
* After they login a new sesion ID is created and when they press Logout it invalidates the sesion. But when i click the back button,it goes to the previous page and can able to use the options available for the user who is already logged out.
* At the same time two users cant able to login the system like Admin and customer. What may be the problem.

Any help would be appreciated


Never try to be a hard-worker. Be a smart-worker.
My Blog
David O'Meara
Rancher

Joined: Mar 06, 2001
Posts: 13459

Firstly it looks like you need to add some 'no-cache' code to your secured pages. This prevents them being retained on the client machine and therefore being able to be retrieved without resubmitting the request.



Secondly, this sounds like either a state problem, maybe the servet has instance fields?
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Problem with session
 
Similar Threads
Need weblogic specific classes to get reference to HttpSession object
Spring security in same project by two separate user entities(Customer & User table)
session invalidate
Session Handling- How restrict to only one admin login
Login ID and Password for WebSphere admin console