1 Reply Latest reply on Dec 22, 2004 7:51 PM by starksm64

another peroblem about j_security_check

wxwang Dec 22, 2004 4:59 AM

Dear All

I don't know it is a bug or something else.

session.invalidate();

I put this code in my login.jsp, the "HTTP Status 400 - Invalid direct reference to form login page" will come out.

Is it meaning I can not disable a session in login.jsp?

Login.jsp uses j_security_check as action.

Thanks for any help

1. Re: another peroblem about j_security_check

starksm64 Dec 22, 2004 7:51 PM (in response to wxwang)

Its does not make sense to call session.invalidate from the login page as this is equivalent to doing a logout. It kills the session that was created for the current login process.
Actions