我在这里cache-control阅读请求/响应标头。
的定义Cache-Control: No-Store:
The no-store directive means browsers aren’t allowed to cache a response and must pull it from the server each time it’s requested. This setting is usually used for sensitive data, such as personal banking details.
Cloud Foundry UAA 将其用于 JWT 签名验证的公钥存储在https://uaa.my-domain.com/token_keys其cache-control响应标头包含no-store.
这对我来说毫无意义——它们是不需要授权即可获取的公钥。此外,根据上面引用的链接,还有一个ETag响应标头暗示浏览器或客户端将缓存响应。