Add Cache-Control header to prevent browser caching of SAML auth location

We should prevent browser caching of the SAML auth location that we configure for an SP. This can be easily done by adding the following directive to that location in the httpd config: Header append Cache-Control "no-cache" https://fedorahosted.org/ipsilon/ticket/81 Signed-off-by: Nathan Kinder <nkinder@redhat.com> Reviewed-by: Rob Crittenden <rcritten@redhat.com>
author: Nathan Kinder <nkinder@redhat.com> 2015-03-10 11:22:47 -0700
committer: Rob Crittenden <rcritten@redhat.com> 2015-03-10 18:24:08 -0400
commit: d67664fbffe9c380a354abe115ee5afa1ff968be (patch)
tree: 54573e7fd389c5aacfd2d187d9d3b60b8284140f
parent: 42700be962e245243f10c30a29c41fcda1f3f712 (diff)
download: ipsilon-d67664fbffe9c380a354abe115ee5afa1ff968be.tar.gz
ipsilon-d67664fbffe9c380a354abe115ee5afa1ff968be.tar.xz
ipsilon-d67664fbffe9c380a354abe115ee5afa1ff968be.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/ipsilon/install/ipsilon-client-install b/ipsilon/install/ipsilon-client-install
index 9ed2a6f..237b439 100755
--- a/ipsilon/install/ipsilon-client-install
+++ b/ipsilon/install/ipsilon-client-install
@@ -115,6 +115,7 @@ def saml2():
             saml_protect = 'info'
             saml_auth = '<Location %s>\n' \
                         '    MellonEnable "auth"\n' \
+                        '    Header append Cache-Control "no-cache"\n' \
                         '</Location>\n' % args['saml_auth']
 
         psp = '# '
author	Nathan Kinder <nkinder@redhat.com>	2015-03-10 11:22:47 -0700
committer	Rob Crittenden <rcritten@redhat.com>	2015-03-10 18:24:08 -0400
commit	d67664fbffe9c380a354abe115ee5afa1ff968be (patch)
tree	54573e7fd389c5aacfd2d187d9d3b60b8284140f
parent	42700be962e245243f10c30a29c41fcda1f3f712 (diff)
download	ipsilon-d67664fbffe9c380a354abe115ee5afa1ff968be.tar.gz ipsilon-d67664fbffe9c380a354abe115ee5afa1ff968be.tar.xz ipsilon-d67664fbffe9c380a354abe115ee5afa1ff968be.zip