Vartlok
Reputation: 2589
Tomcat: default value for Cache-Control
I'm working on one web app and found that the Cache-Control is private for all resource. I tried to find a place where this is set, but i didn't find any xml or property file with setting for the http header. Also i didn't find any docs is related to this issue.
Can someone help me?
Upvotes: 1
Views: 1933
Answers (1)
Mark Thomas
Reputation: 16625
The authentication valves do this automatically to prevent protected resources from being cached in a pubic cache since that would be a security vulnerability. Details of configuration options for twekaing this are in the docs:
http://tomcat.apache.org/tomcat-8.0-doc/config/valve.html#Authentication
Upvotes: 1
Related Questions
- Tomcat: Cache-Control
- Tomcat static cache "cacheTtl"
- Is there a way to define the resources to be cached on Tomcat?
- How to disable cache in tomcat 8.0.23?
- Tomcat and cache-control: Private, and Expires: <date in past> - Where is this set?
- how to disable tomcat caching?
- Java Tomcat enable caching
- Disable Tomcat caching for a static file
- Caching in Tomcat Server
- Disabling browser caching in Tomcat 6