io.camunda.security.configuration.headers.CacheControlConfig

public class CacheControlConfig extends Object

Configures cache control headers to prevent sensitive content from being cached.

The Cache-Control header directives control caching in browsers and shared caches (e.g., proxies, CDNs). When enabled (default state), this configuration sets headers that completely disable caching: - Cache-Control: no-cache, no-store, max-age=0, must-revalidate - Pragma: no-cache (for HTTP/1.0 backward compatibility) - Expires: 0 (indicates expired content)

This is a critical security measure for applications handling sensitive data to prevent: - Cached credentials or session data being accessible after logout - Sensitive information persisting in browser/proxy caches - Shared computer scenarios where subsequent users could access cached data

See Also:

Constructor Summary

Constructors

Constructor

Description

CacheControlConfig()
Method Summary

Modifier and Type

Method

Description

boolean

isDisabled()

boolean

isEnabled()

void

setEnabled(boolean enabled)

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- CacheControlConfig
  
  public CacheControlConfig()
Method Details
- isEnabled
  
  public boolean isEnabled()
- setEnabled
  
  public void setEnabled(boolean enabled)
- isDisabled
  
  public boolean isDisabled()

Class CacheControlConfig

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Details

CacheControlConfig

Method Details

isEnabled

setEnabled

isDisabled