| commit | a23695719ef47e59357052a000dbb5bcc34bf979 | [log] [tgz] |
|---|---|---|
| author | Shawn Pearce <sop@google.com> | Fri Jan 11 12:36:11 2013 -0800 |
| committer | Shawn Pearce <sop@google.com> | Fri Jan 11 12:39:06 2013 -0800 |
| tree | 7f6950a2108cbd3caea778e1ff3e8b1d608273a3 | |
| parent | 3145462d68e224672d2b7a50d28fbbebc3e0923d [diff] |
Use private caching on secure connections If a user asks for a resource over a secure connection, only permit the browser to cache the resource. This prevents a man in the middle proxy from accidentially caching a Set-Cookie header. Define caching rules in a CacheHeaders helper class that can be used within Gerrit Code Review, enabling Gerrit to match behavior. Change-Id: Ibb9c3b6ccf0e16430f1adae96e8e2680f77925b0