Monday, December 17, 2001 07:57 AM
First, can you give us some sample code where you get the value from the session and compare it?
Second, some servlet containers (Tomcat might be one of them, especially the newer versions) will persist sessions across restarts. This is great for users who get their servlet servers shutdown on them while they're logged-in. This might turn out to be a pain for you. Check your
web.xml file for any indication of persisting sessions, and take a look at your users manual or FAQ.
If your sessions are persisting and you do not want them to, then expire the session when the user performs a logout.