Don't let the browser show a cached transition page

app/controllers/application_controller.rb

@@ -2,6 +2,7 @@ class ApplicationController < ActionController::Base
   include GDS::SSO::ControllerMethods
 
   before_filter :require_signin_permission!
+  before_filter :set_cache_buster
 
   protect_from_forgery
 
@@ -23,6 +24,13 @@ def render_error(status, options={})
     render "errors/error_#{status}", status: status, layout: 'error_page'
   end
 
+  # http://stackoverflow.com/questions/711418/how-to-prevent-browser-page-caching-in-rails
+  def set_cache_buster
+    response.headers["Cache-Control"] = "no-cache, no-store, max-age=0, must-revalidate"
+    response.headers["Pragma"] = "no-cache"
+    response.headers["Expires"] = "Fri, 01 Jan 1990 00:00:00 GMT"
+  end
+
 private
   def verify_authenticity_token
     raise ActionController::InvalidAuthenticityToken unless verified_request?