Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

SEC-2331: Include Expires: 0 in xsd and appendix

This commit is contained in:
Rob Winch 2013-09-27 17:10:42 -05:00
parent 8fed90c26c
commit 8087cde628
4 changed files with 8 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
config/src/main/resources/org/springframework/security/config/spring-security-3.2.rnc
View File

@ -746,7 +746,7 @@ hsts-options.attlist &=
attribute request-matcher-ref { xsd:token }? attribute request-matcher-ref { xsd:token }?
cache-control = cache-control =
## Adds Cache-Control no-cache, no-store, must-revalidate and Pragma no-cache every URL ## Adds Cache-Control no-cache, no-store, must-revalidate, Pragma no-cache, and Expires 0 for every request
element cache-control {empty} element cache-control {empty}
frame-options = frame-options =

3
config/src/main/resources/org/springframework/security/config/spring-security-3.2.xsd
View File

@ -2314,7 +2314,8 @@
</xs:attributeGroup> </xs:attributeGroup>
<xs:element name="cache-control"> <xs:element name="cache-control">
<xs:annotation> <xs:annotation>
<xs:documentation>Adds Cache-Control no-cache, no-store, must-revalidate and Pragma no-cache every URL <xs:documentation>Adds Cache-Control no-cache, no-store, must-revalidate, Pragma no-cache, and Expires 0 for
every request
</xs:documentation> </xs:documentation>
</xs:annotation> </xs:annotation>
<xs:complexType/> <xs:complexType/>

6
docs/manual/src/docbook/appendix-namespace.xml
View File

@ -265,7 +265,7 @@
It enables easy configuration for several headers and also allows for setting custom headers through It enables easy configuration for several headers and also allows for setting custom headers through
the <link linkend="nsa-header">header</link> element. the <link linkend="nsa-header">header</link> element.
<itemizedlist> <itemizedlist>
<listitem><literal>Cache-Control</literal> and <literal>Pragma</literal> - Can be set using the <listitem><literal>Cache-Control</literal>, <literal>Pragma</literal>, and <literal>Expires</literal> - Can be set using the
<link linkend="nsa-cache-control">cache-control</link> element. This ensures that the <link linkend="nsa-cache-control">cache-control</link> element. This ensures that the
browser does not cache your secured pages.</listitem> browser does not cache your secured pages.</listitem>
<listitem><literal>Strict-Transport-Security</literal> - Can be set using the <listitem><literal>Strict-Transport-Security</literal> - Can be set using the
@ -306,8 +306,8 @@
</section> </section>
<section xml:id="nsa-cache-control"> <section xml:id="nsa-cache-control">
<title><literal>&lt;cache-control&gt;</literal></title> <title><literal>&lt;cache-control&gt;</literal></title>
<para>Adds <literal>Cache-Control</literal> and <literal>Pragma</literal> headers to ensure that the <para>Adds <literal>Cache-Control</literal>, <literal>Pragma</literal>, and <literal>Expires</literal>
browser does not cache your secured pages.</para> headers to ensure that the browser does not cache your secured pages.</para>
<section xml:id="nsa-cache-control-parents"> <section xml:id="nsa-cache-control-parents">
<title>Parent Elements of <literal>&lt;cache-control&gt;</literal></title> <title>Parent Elements of <literal>&lt;cache-control&gt;</literal></title>
<itemizedlist> <itemizedlist>

2
docs/manual/src/docbook/namespace-config.xml
View File

@ -642,7 +642,7 @@ List&lt;OpenIDAttribute> attributes = token.getAttributes();</programlisting>The
<http ...> <http ...>
... ...
<headers> <headers>
<!-- Add Cache-Control and Pragma headers --> <!-- Add Cache-Control, Pragma, and Expires headers -->
<cache-control/> <cache-control/>
<!-- Add X-Content-Type-Options with value of nosniff --> <!-- Add X-Content-Type-Options with value of nosniff -->
<content-type-options/> <content-type-options/>