{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 Explosion°爆炸 的问题《play framework won't logout with secure module》','https://www.manongdao.com/q-933163.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I have a problem when I do logout. Basically I am using the secure module, i call to the method secure.logout(), this redirect to login page, but i can do back and come back to the page, as if I am logued.
public static void logout() throws Throwable {
Security.invoke("onDisconnect");
session.clear();
response.removeCookie("rememberme");
for(String key : response.cookies.keySet()){
response.removeCookie(key);
}
response.reset();
Security.invoke("onDisconnected");
Secure.login();
}
I am using the last code, I was including the removing cookies, for a while it worked, but now no longer work.
Somebody have a solution for that. I appreciate so much your help.
I would say that this is because when you hit "back" you are accessing the cache of your navigator. Try to hit "refresh" on this unauthorised page and you will that Play is not actually serving the page.
This article contains interesting information on the subject: http://www.codeproject.com/Tips/549347/Browser-Back-Button-Issue-After-Logout