https://bz.apache.org/bugzilla/show_bug.cgi?id=62048
--- Comment #4 from Marek Czernek <mczer...@redhat.com> --- I have provided a PR for this functionality: https://github.com/apache/tomcat/pull/98 . It works like Christopher suggested: Once a user clicks logout, 401 is sent in the response to flush cache and the session is invalidated. That way, upon next GET, user is asked for login credentials. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
