Use private caching on secure connections

If a user asks for a resource over a secure connection, only permit
the browser to cache the resource. This prevents a man in the middle
proxy from accidentially caching a Set-Cookie header.

Define caching rules in a CacheHeaders helper class that can be
used within Gerrit Code Review, enabling Gerrit to match behavior.

Change-Id: Ibb9c3b6ccf0e16430f1adae96e8e2680f77925b0
3 files changed
tree: 7f6950a2108cbd3caea778e1ff3e8b1d608273a3
  1. .settings/
  2. src/
  3. .gitignore
  5. GoogleFormat.xml
  6. pom.xml