Hi, CLN 1126273 http://svn.apache.org/viewvc?view=revision&revision=1126273 Seems to have disabled the automatic addition of the cache-control and pragma response headers on secure constrained pages.
The initial revision of this file(at least the oldest copy I could find) had this check http://svn.apache.org/viewvc/tomcat/tc5.5.x/trunk/container/catalina/src/share/org/apache/catalina/authenticator/AuthenticatorBase.java?revision=301082&view=markup but it was commented out in CLN 302373 http://svn.apache.org/viewvc?view=revision&revision=302373 I don't understand why it was ever present, though. Does anybody know why you wouldn't want these headers on secure requests? Is there a separate way I'm supposed to configure Tomcat to add these flags for secure requests? Thanks, Michael --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
