> Hi all, > > I'd like to stop Tomcat (4.0.2) from expiring my forms and causing my > browser to spew out "Your webpage has expired, etc..." whenever a user > history.back()s to the form. Tomcat seems to be pretty keen to do this since > it's trying a whole bunch of headers to expire/no-cache my pages. > > I've googled around it it's been suggested that this happens because I've > slapped a security-constraint across the whole site. So, Tomcat expires > every page in order that other users can't history.back() to any > (potentially sensitive) forms ..?
It does that to avoid caching by intermediate proxies (using back is not the problem we're trying to fix here). > But is there so way to toggle this behaviour in Tomcat's config ..? Not at the moment. > Obviously I'd rather not have to hack up any HttpServletResponses to achieve > this... > > Any suggestions would be appreciated (& I apologise if I've missed something > obvious...), Remy -- To unsubscribe: <mailto:[EMAIL PROTECTED]> For additional commands: <mailto:[EMAIL PROTECTED]> Troubles with the list: <mailto:[EMAIL PROTECTED]>
