Configure Session Timeout In Servlet
HttpSession (session) is used to maintain the session between browser and server since HTTP is a stateless protocol.
So if user is going to logout from the web application then we must kill the session to free the resources used by session.
if we are not killing the session once user logout from the application, then it can degrade the performance of the application and it's not good for security point of view also.
Configure session timeout in Servlet :-