[
https://issues.apache.org/jira/browse/OFBIZ-9302?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15954883#comment-15954883 ]
Jacques Le Roux commented on OFBIZ-9302:
----------------------------------------
I'll use this as reference
https://en.wikipedia.org/wiki/Wikipedia:Bypass_your_cache> logout security
> ---------------
>
> Key: OFBIZ-9302
> URL:
https://issues.apache.org/jira/browse/OFBIZ-9302> Project: OFBiz
> Issue Type: Bug
> Components: ALL APPLICATIONS
> Affects Versions: Release Branch 16.11
> Reporter: Moatasim Al Masri
> Attachments: logout2.wmv, logout.wmv
>
>
> am trying to check OFBIZ security authentication, and I found when we logedout the session still open in browser, that if we press back from browser we can reopen the session and continue see our application without any authentication.
> please see the video attached : logout.wmv
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
Locked
