I want to create a logout action in JSPs such that there is no back action. Presently, I am using session.invalidate method to kill my existing session and directing to login page.
But that doesn't prevent the page getting loaded if the user presses the back button. After searching I came to know that something like SSL is used for that purpose. Can anyone tell me what is SSL(other than it's full-form :) (Secure Socket Layer) )? How is it used?
Other than that, after much searching I found this code
<%
response.setHeader("Cache-Control","no-cache"); //HTTP 1.1
response.setHeader("Pragma","no-cache"); //HTTP 1.0
response.setDateHeader ("Expires", 0); //prevents caching at the proxy server
%>
I am keeping this code in beginning of body tag, but it is not working. What could be the error? I even tried with "no-store" in place of "no-cache"? Can anyone help me what more change or where should I keep that particular code? Other than this, is anyone having another solution?
Thanks in advance.