程序流程:login.jsp-ok.jsp-delete.jsp-login.jsp
login.jsp
<%@ page language="java" contentType="text/html; charset=UTF-8"
pageEncoding="UTF-8"%>
<%@ taglib prefix="s" uri="/struts-tags"%>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html> <head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title>登陆</title>
</head>
<!--
<script type='text/javascript'>
window.history.forward(0);//禁止页面后退
</script>
-->
<body>
<%=session.getAttribute("login2") %>
<s:form action="Login">
<s:textfield key="username" label="用户名" />
<br>
<s:password key="userpass" label="密 码" />
<s:submit value="登陆" />
</s:form>
</body>
</html>ok.jsp<body>
其他权限者
<%=session.getAttribute("login2") %>
<a href="./delete.jsp">返回首页</a>
</body>
delete.jsp</head>
<body><% session.removeAttribute("login2");
session.invalidate();
//设置无缓存
response.setHeader("progma","no-cache");
response.setHeader("Cache-Control","no-cache");
response.setDateHeader("Expires",0);response.setHeader("Refresh","0;URL=login.jsp");%>
</body>我以用户名admin登陆,然后跳转入ok.jsp打印出session=“admin”,然后点击“返回首页”,跳转入delete.jsp,在这里我已经将session清空,并且将cache也清空了,而且,跳转进入的login.jsp打印出的session=“null”,但是为什么我点击浏览器的"后退"时,依然可以返回到ok.jsp并且打印出session=“admin”,而不是提示说“网页已过期”呢?
请各位指点
login.jsp
<%@ page language="java" contentType="text/html; charset=UTF-8"
pageEncoding="UTF-8"%>
<%@ taglib prefix="s" uri="/struts-tags"%>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html> <head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title>登陆</title>
</head>
<!--
<script type='text/javascript'>
window.history.forward(0);//禁止页面后退
</script>
-->
<body>
<%=session.getAttribute("login2") %>
<s:form action="Login">
<s:textfield key="username" label="用户名" />
<br>
<s:password key="userpass" label="密 码" />
<s:submit value="登陆" />
</s:form>
</body>
</html>ok.jsp<body>
其他权限者
<%=session.getAttribute("login2") %>
<a href="./delete.jsp">返回首页</a>
</body>
delete.jsp</head>
<body><% session.removeAttribute("login2");
session.invalidate();
//设置无缓存
response.setHeader("progma","no-cache");
response.setHeader("Cache-Control","no-cache");
response.setDateHeader("Expires",0);response.setHeader("Refresh","0;URL=login.jsp");%>
</body>我以用户名admin登陆,然后跳转入ok.jsp打印出session=“admin”,然后点击“返回首页”,跳转入delete.jsp,在这里我已经将session清空,并且将cache也清空了,而且,跳转进入的login.jsp打印出的session=“null”,但是为什么我点击浏览器的"后退"时,依然可以返回到ok.jsp并且打印出session=“admin”,而不是提示说“网页已过期”呢?
请各位指点
解决方案 »
免费领取超大流量手机卡,每月29元包185G流量+100分钟通话, 中国电信官方发货