Index: lams_central/web/login.jsp
===================================================================
diff -u -r7a9e30882d456bbcb294d29c396ad3adb5cb75c9 -r80bb5cfbc56a1be1dc664f47af5a138824696cb2
--- lams_central/web/login.jsp	(.../login.jsp)	(revision 7a9e30882d456bbcb294d29c396ad3adb5cb75c9)
+++ lams_central/web/login.jsp	(.../login.jsp)	(revision 80bb5cfbc56a1be1dc664f47af5a138824696cb2)
@@ -178,6 +178,8 @@
 				// invalidate session so a new user can be logged in
 				HttpSession hs = SessionManager.getSession();
 				if (hs != null) {
+				    hs.removeAttribute("login");
+				    hs.removeAttribute("password");
 					UserDTO userDTO = (UserDTO) hs.getAttribute("user");
 					if (userDTO != null) {
 						SessionManager.removeSession(userDTO.getLogin(), true);