Send header to avoid HTTP cache on session start

getformwork · Dec 4, 2024 · 74fbe61 · 74fbe61
1 parent 52b27cc
commit 74fbe61
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/formwork/src/Http/Session/Session.php b/formwork/src/Http/Session/Session.php
@@ -8,6 +8,7 @@
 use Formwork\Data\Traits\DataMultipleSetter;
 use Formwork\Http\Request;
 use Formwork\Http\Utils\Cookie;
+use Formwork\Http\Utils\Header;
 use Formwork\Utils\Str;
 use InvalidArgumentException;
 use RuntimeException;
@@ -88,6 +89,8 @@ public function start(): void
             'use_strict_mode' => true,
         ]);
 
+        Header::send('Cache-Control', 'no-store, no-cache, must-revalidate');
+
         if (($id = session_id()) === false) {
             throw new RuntimeException('Cannot get session id');
         }