[wp-trac] [WordPress Trac] #61942: Add "no-store" to Cache-Control header to prevent unexpected cache behavior
WordPress Trac
noreply at wordpress.org
Tue Jan 28 23:21:05 UTC 2025
#61942: Add "no-store" to Cache-Control header to prevent unexpected cache behavior
--------------------------------------+--------------------------
Reporter: kkmuffme | Owner: johnbillion
Type: defect (bug) | Status: closed
Priority: normal | Milestone: 6.8
Component: Security | Version:
Severity: normal | Resolution: fixed
Keywords: has-patch has-unit-tests | Focuses:
--------------------------------------+--------------------------
Changes (by johnbillion):
* status: reviewing => closed
* resolution: => fixed
Comment:
In [changeset:"59724" 59724]:
{{{
#!CommitTicketReference repository="" revision="59724"
Security: Always include the `no-store` and `private` directives in the
`Cache-Control` header when setting headers that prevent caching.
The intention of these headers is to prevent any form of caching, whether
that's in the browser or in an intermediate cache such as a proxy server.
These directives instruct an intermediate cache to not store the response
in their cache for any user – not just for logged-in users.
This does not affect the caching behaviour of assets within a page such as
images, CSS, and JavaScript files.
Props kkmuffme, devansh2002, johnbillion.
Fixes #61942
}}}
--
Ticket URL: <https://core.trac.wordpress.org/ticket/61942#comment:7>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list