From 803cd3c5de758f41754d7fbf8e3e0a483d08fd31 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andreas=20=C3=85kre=20Solberg?= <andreas.solberg@uninett.no>
Date: Mon, 12 Jan 2009 10:09:02 +0000
Subject: [PATCH] Do not cache pages that shows attributes (Contributor: Thomas
 Graff)

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@1142 44740490-163a-0410-bde0-09ae8108e29a
---
 modules/consent/www/getconsent.php   | 12 ++++++++++--
 www/example-simple/saml2-example.php | 11 +++++++++++
 2 files changed, 21 insertions(+), 2 deletions(-)

diff --git a/modules/consent/www/getconsent.php b/modules/consent/www/getconsent.php
index 31e4faa49..b075c6cb0 100644
--- a/modules/consent/www/getconsent.php
+++ b/modules/consent/www/getconsent.php
@@ -8,6 +8,16 @@
  * @version $Id$
  */
 
+/*
+ * Explisit instruct consent page to send no-cache header to browsers 
+ * to make sure user attribute information is not store on client disk.
+ * 
+ * In an vanilla apache-php installation is the php variables set to:
+ * session.cache_limiter = nocache
+ * so this is just to make sure.
+ */
+session_cache_limiter('nocache');
+
 SimpleSAML_Logger::info('Consent - getconsent: Accessing consent interface');
 
 if (!array_key_exists('StateId', $_REQUEST)) {
@@ -133,8 +143,6 @@ if (array_key_exists('consent:store', $state)) {
 	$t->data['usestorage'] = FALSE;
 }
 
-
-
 $t->show();
 exit;
 
diff --git a/www/example-simple/saml2-example.php b/www/example-simple/saml2-example.php
index e1cf0f0fc..737888cc2 100644
--- a/www/example-simple/saml2-example.php
+++ b/www/example-simple/saml2-example.php
@@ -6,6 +6,17 @@
  */
 require_once('../_include.php');
 
+/*
+ * Explisit instruct consent page to send no-cache header to browsers 
+ * to make sure user attribute information is not store on client disk.
+ * 
+ * In an vanilla apache-php installation is the php variables set to:
+ * session.cache_limiter = nocache
+ * so this is just to make sure.
+ */
+session_cache_limiter('nocache');
+
+
 /* Load simpleSAMLphp, configuration and metadata */
 $config = SimpleSAML_Configuration::getInstance();
 $session = SimpleSAML_Session::getInstance();
-- 
GitLab