Using Vaadin 7.1.10 (and earlier 7.1 as well), we set up our CustomizedSystemMessages() to require re-login by redirecting to a logoff page (outside of Vaadin) for session expired, communications error, internal error, out of sync and cookies disabled.
Most of the time this works as expected. When we see a session expired link, it will 90% of time go to the logoff page. But on a few occasions – we don’t know how they differ – it will just end up reloading the page when you click on the red error box, with the user logged in as if the session never ended.
Is there any idea why this sometimes happens and any recommendation on perhaps how to trap the session expiration in debug so I can perhaps trace why it doesn’t redirect to our logoff page?