05-05-2010 04:27 PM
I am developing on a web site that has a login section which contain sensitive data.
Once the users logged out, he will end up on the log out page. Using blackberry's back or
escape button allows him to go all the way back even though he is not logged in any longer.
I know this problem is related to blackberry's native browser, the way it caches websites and also
the way blackberry's escape button is being implemented.
I already try the following and none of it works:
Meta tag as suggested by RIM,
<meta http-equiv="EXPIRES" content="NOW">
<meta http-equiv="Cache-Control" content="no-store, no-cache, must-revalidate, post-check=0, pre-check=0" >
<meta http-equiv="Pragma" content="no-cache" >
Also tried meta tags in uppercase and lowercase http response headers: response.setHeader("Cache-Control", "no-cache");
long currentTime = System.currentTimeMillis();
response.setDateHeader ("Expires", 0);
response.setDateHeader ("Date", currentTime);
for content type, tried both text/html and application/xhtml+xml
Cookies: Check current cookie: if (myCookie==null || !myCookie.getValue().toString().equals("yes")) response.sendRedirect("index.html"); In an embedded image, also check current cookie. <img src="checkCookie.jsp" alt="check cookie">
I just couldn't find a way.
Any ideas from the RIM specialists.
What I would like to achieve is a redirect back to the sign on page rather than back to the stall user session.
Thanks in advance