Hi. We recently find out that some keycloak URLs have header “cache-control: no-cache”:
For example:
Request to https://<keycloak.domain>/auth/admin/master/console/ we have cache-control: no-cache
Question:
- Can we set the next settings for all keycloak headers “cache-control: no-cache, no-store”? After the changes will keycloak work properly?
Thanks.
1 Like
I’m trying to set the headers manually by implementing ContainerResponseFilter
interface. I can set pragma
and expires
. But the cache-control
header is overridden somewhere else. Even if I set it, I get cache-control: no-cache
in the browser for /realms/myrealm/account/
.
Simple example:
@Provider
public class ResponseCacheFilter implements ContainerResponseFilter {
@Override
public void filter(ContainerRequestContext requestContext, ContainerResponseContext responseContext) {
String requestPath = requestContext.getUriInfo().getPath();
if (requestPath.contains("/account/")) {
responseContext.getHeaders().add("Cache-Control", "no-cache, no-store, must-revalidate");
responseContext.getHeaders().add("Pragma", "no-cache");
responseContext.getHeaders().add("Expires", "0");
}
}
}