Fix settings pages being cacheable by the browser (#12714)

Fix #12255
author: Eugen Rochko <eugen@zeonfederated.com> 2019-12-30 04:38:30 +0100
committer: GitHub <noreply@github.com> 2019-12-30 04:38:30 +0100
commit: 6e9e8d89fa0dbfe9c3c683c7e7dede8a54d3b6d3 (patch)
tree: 5a5325acfd729bf06eaf406ef1014e2b089566d6 /app/controllers/oauth
parent: 353c94910bf02e2cd7f82ae47a55af3164926b3d (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/app/controllers/oauth/authorizations_controller.rb b/app/controllers/oauth/authorizations_controller.rb
index cebbdc4d0..bb5d639ce 100644
--- a/app/controllers/oauth/authorizations_controller.rb
+++ b/app/controllers/oauth/authorizations_controller.rb
@@ -5,6 +5,7 @@ class Oauth::AuthorizationsController < Doorkeeper::AuthorizationsController
 
   before_action :store_current_location
   before_action :authenticate_resource_owner!
+  before_action :set_cache_headers
 
   include Localized
 
@@ -27,4 +28,8 @@ class Oauth::AuthorizationsController < Doorkeeper::AuthorizationsController
   def truthy_param?(key)
     ActiveModel::Type::Boolean.new.cast(params[key])
   end
+
+  def set_cache_headers
+    response.headers['Cache-Control'] = 'no-cache, no-store, max-age=0, must-revalidate'
+  end
 end
author	Eugen Rochko <eugen@zeonfederated.com>	2019-12-30 04:38:30 +0100
committer	GitHub <noreply@github.com>	2019-12-30 04:38:30 +0100
commit	6e9e8d89fa0dbfe9c3c683c7e7dede8a54d3b6d3 (patch)
tree	5a5325acfd729bf06eaf406ef1014e2b089566d6 /app/controllers/oauth
parent	353c94910bf02e2cd7f82ae47a55af3164926b3d (diff)