projects / citadel.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
* make the cookie failure page non-cacheable.
[citadel.git] / webcit / context_loop.c
diff --git a/webcit/context_loop.c b/webcit/context_loop.c
index a3b47acad173a49913fd3590af4bce3a2d97bb69..507ff9e767d1823d46139685ae09ce6403382267 100644 (file)
--- a/webcit/context_loop.c
+++ b/webcit/context_loop.c
@@ -543,8 +543,10 @@ void context_loop(ParsedHttpHdrs *Hdr)
                TheSession = CreateSession(1, &SessionList, Hdr, &SessionListMutex);
 
                if ((StrLength(Hdr->c_username) == 0) &&
-                   (!Hdr->HR.DontNeedAuth))
+                   (!Hdr->HR.DontNeedAuth)) {
                        OverrideRequest(Hdr, HKEY("GET /static/nocookies.html?force_close_session=yes HTTP/1.0"));
+                       Hdr->HR.prohibit_caching = 1;
+               }
                
                if (StrLength(Hdr->c_language) > 0) {
                        lprintf(9, "Session cookie requests language '%s'\n", ChrPtr(Hdr->c_language));
Citadel server, clients, utilities