Index: lams_central/web/login.jsp
===================================================================
diff -u -r4583983b64efe1d91fbb47cdde6a759a6a30e859 -r131ce42e64069f574a2a4a9bc1e5c4be4918e5bb
--- lams_central/web/login.jsp	(.../login.jsp)	(revision 4583983b64efe1d91fbb47cdde6a759a6a30e859)
+++ lams_central/web/login.jsp	(.../login.jsp)	(revision 131ce42e64069f574a2a4a9bc1e5c4be4918e5bb)
@@ -176,12 +176,11 @@
 				// invalidate session so a new user can be logged in
 				HttpSession hs = SessionManager.getSession();
 				if (hs != null) {
+				    // maybe this attribute removal is not necessary
+				    // since we invalidate the session right after it
 				    hs.removeAttribute("login");
 				    hs.removeAttribute("password");
-					UserDTO userDTO = (UserDTO) hs.getAttribute("user");
-					if (userDTO != null) {
-					    SessionManager.removeSessionByLogin(userDTO.getLogin(), true);
-					}
+				    hs.invalidate();
 				}
 			%>
 			<script type="text/javascript">