>(except duplicated values, why?) my (double copy&paste) fault --> Cache-Control : private, no-store, no-cache, max-age=0, must-revalidate
> but I'd still add the timestamp > parameter as you suggested before really? > -----Original Message----- > From: Bertrand Delacretaz [mailto:bdelacre...@apache.org] > Sent: Wednesday, September 15, 2010 9:16 AM > To: dev@sling.apache.org > Subject: Re: [sling explorer] Form based auth with IE to no avail :-( > > > On Wed, Sep 15, 2010 at 8:47 AM, Clemens Wyss > <clemens...@mysign.ch> wrote: > > after a f2f discussion with mike I see reason that > > we'd better add the appropriate cache header to > > /system/sling/info.sessionInfo, appropriate being: > > > > Cache-Control : private, no-store, no-cache, max-age=0, > must-revalidate, private, no-store, no-cache, max-age=0, > must-revalidate > > Looks like the clean solution (except duplicated values, why?), but > I'd still add the timestamp parameter as you suggested before, just to > be on the safe side with broken browsers. > > -Bertrand >
