Invalidating a session in jsp
A servlet gets instantiated only once in the lifetime of servlet context, so you should not store anything related to session data in a servlet.
In simple words, if "this" is a servlet, "Name" is always same despite who the user is and where the request comes from.
Then logging in consists of creating a session, if one doesn't already exist, and assigning the user ID to that session variable.
Logging out consists of removing that session variable.
This could be something like That's not something even close to what Paul suggested.So if i get this right, i need to create a session manually? If so would it be something like: How does this address the issue of the Parameter() retrieving values from a previous logon. Because that is how i get my username and password.That's not something even close to what Paul suggested.Response State State(Response State Manager.java:149) at com.icesoft.faces.webapp.xmlhttp.
Blocking All Updates(Blocking Servlet.java:357) at com.icesoft.faces.webapp.xmlhttp. Blocking Servlet.service(Blocking Servlet.java:261) at javax. Http Servlet.service(Http Servlet.java:802) Yes, you're right, but I think it's a race that the receive-updates request always loses;) When using asynchronous updates the outstanding (in time not quality) receive-updates request will cause this. I think it's just a matter of the Response State State() needing to check the session state before attempting to grab anything out of it. Thanks, Philip Sadly the example zip file only seems to work until you try and "log in" again. once the "logout" has been performed taking you to the start page, click the button, and it will freeze (this seems to be erratic).