New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

unnecessary response headers be added when backend return 304 status #490

Closed
fliaping opened this Issue Aug 13, 2018 · 1 comment

Comments

Projects
None yet
2 participants
@fliaping

fliaping commented Aug 13, 2018

Bug report
version: 2.0.1.RELEASE

a backend service return 304 with only one header content-length: 0, I have verificated by wireshark,
but the browser received header as below:

HTTP/1.1 304 Not Modified
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1 ; mode=block
content-length: 0

the question is browser won't use local cache when receive these headers
I don't know where to set these headers in source code after I readed it, I guess it beacuse spring-webflux?

@spencergibb

This comment has been minimized.

Member

spencergibb commented Aug 15, 2018

I think it's either webflux or spring-security, either way, it's not the gateway.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment