Details
-
Bug
-
Resolution: Fixed
-
High
-
4.2.0, 3.3.25
-
None
Description
Steps to reproduce:
override 'ezplatform.http_cache.no_vary.routes' :
parameters: ezplatform.http_cache.no_vary.routes: ['ezplatform.httpcache.invalidatetoken', 'my_route']
Try to access the route .
Expected result :
the response should not have Cookie and authorization headers