Hello all.
I try to code logout servlet but request.getSession().invalidate() not works: browser "remember" old entered principal.
I read some blogs and insert this code before session-invalidating:
response.setHeader("Cache-Control","no-cache,post-check=0,pre-check=0,no-store,private");
response.setDateHeader("Expires", new Date().getTime() - 1);
response.setHeader("Pragma","no-cache");
but the result has not changed.