-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Jan,
On 7/16/13 3:55 AM, Jan Vávra wrote:
> I've solved my problem. The correct attitude is to have all
> contexts unauthenticated and only few restrict. In my case
> restricted urls are /index.jsp, /admin/*, /user/*
>
> In the original web.xml I h
Hi.
I've solved my problem. The correct attitude is to have all contexts
unauthenticated and only few restrict. In my case restricted urls are
/index.jsp, /admin/*, /user/*
In the original web.xml I had all contexts restricted and static context
/common/* was masked out. Although the /common
On 6/27/2013 9:37 AM, Jan Vávra wrote:
> Hi.
>
> Note that Cache-Control:private does not disable caching. Instead, it
> disables public-caching for proxies. The browser is still free to
> cache the document in certain ways.
>
> True disabling of the cache would be to set Cache-Control to
> "no-cac
Hi.
Note that Cache-Control:private does not disable caching. Instead, it
disables public-caching for proxies. The browser is still free to
cache the document in certain ways.
True disabling of the cache would be to set Cache-Control to
"no-cache" or "no-store" (though no-store is usually more a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Jan,
On 6/26/13 7:36 AM, Jan Vávra wrote:
> If I use auth-method FORM, all requests return with headers
> denying caching on the browser side although I have excluded some
> part of my app from authentication.
>
> The headers for a png image are:
>
