I'm building a web page and have a valid SSL cert and my headers set to no-store
But, about:cache my web page's data even after the application is logged out and the web app's tab is closed (i.e. other tabs and the browser remain open.) Any ideas on what I might be doing wrong? Thank you -SR (P.S. I've also tried various combinations of no-cache, no-store, must- revalidate, private, max-stale=0, post-check=0 & pre-check=0) _______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
