I'm going to take a wild stab and say that this answerwill solve your problem.

我将大胆地说这个答案将解决您的问题。

Per the PHP Docs For session_destroy():

根据PHP Docs For session_destroy()：

session_destroy()destroys all of the data associated with the current session. It does notunset any of the globalvariables associated with the session, or unset the session cookie. To use the session variables again, session_start() has to be called.

In order to kill the session altogether, like to log the user out, the session id must also be unset. If a cookie is used to propagate the session id (default behavior), then the session cookie must be deleted. setcookie() may be used for that.

session_destroy()销毁与当前会话相关的所有数据。它不会取消设置与会话关联的任何全局变量，也不会取消设置会话 cookie。要再次使用会话变量，必须调用 session_start()。

为了完全终止会话，比如注销用户，会话 ID 也必须取消设置。如果使用 cookie 来传播会话 ID（默认行为），则必须删除会话 cookie。setcookie() 可用于此目的。

To sum up what seems to be your problem, the pesky session cookie (which identifies the session) is not being unset. Therefore, when you hit the back button, and session_start();appears at the top of your script, the global session variables are still being referenced. As the other answer suggests, try:

总结一下似乎是您的问题，讨厌的会话 cookie（标识会话）没有被取消设置。因此，当您点击后退按钮并session_start();出现在脚本顶部时，全局会话变量仍在被引用。正如另一个答案所暗示的那样，请尝试：

$_SESSION = array();

to clear all of the global session data. Also, as the docs say, unset the session cookie.

清除所有全局会话数据。此外，正如文档所说，取消设置会话 cookie。

you might want to add session_start()in there too

你可能也想session_start()在那里添加

session_start();
unset($_SESSION['user']);
 unset($_SESSION['pass']);
 session_destroy();
 header('Location: index.php');

also, i personally prefer to unset the entire session like unset($_SESSION);, but everyone has their own ways of doing things

另外，我个人更喜欢取消整个会话unset($_SESSION);，但每个人都有自己的做事方式