Return-Path: 
 <dev-return-73091-apmail-httpd-dev-archive=httpd.apache.org@httpd.apache.org>
X-Original-To: apmail-httpd-dev-archive@www.apache.org
Delivered-To: apmail-httpd-dev-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id EEDBC9FAC
	for <apmail-httpd-dev-archive@www.apache.org>;
 Mon, 31 Oct 2011 13:06:00 +0000 (UTC)
Received: (qmail 35687 invoked by uid 500); 31 Oct 2011 13:06:00 -0000
Delivered-To: apmail-httpd-dev-archive@httpd.apache.org
Received: (qmail 35626 invoked by uid 500); 31 Oct 2011 13:06:00 -0000
Mailing-List: contact dev-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: dev@httpd.apache.org
list-help: <mailto:dev-help@httpd.apache.org>
list-unsubscribe: <mailto:dev-unsubscribe@httpd.apache.org>
List-Post: <mailto:dev@httpd.apache.org>
List-Id: <dev.httpd.apache.org>
Delivered-To: mailing list dev@httpd.apache.org
Received: (qmail 35618 invoked by uid 99); 31 Oct 2011 13:06:00 -0000
Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 31 Oct 2011 13:06:00 +0000
X-ASF-Spam-Status: No, hits=-2.3 required=5.0
	tests=RCVD_IN_DNSWL_MED,SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (athena.apache.org: domain of b.vanderschans@1hippo.com
 designates 64.18.2.18 as permitted sender)
Received: from [64.18.2.18] (HELO exprod7og120.obsmtp.com) (64.18.2.18)
    by apache.org (qpsmtpd/0.29) with SMTP; Mon, 31 Oct 2011 13:05:54 +0000
Received: from mail-vx0-f173.google.com ([209.85.220.173]) (using TLSv1) by
 exprod7ob120.postini.com ([64.18.6.12]) with SMTP;
	Mon, 31 Oct 2011 06:05:33 PDT
Received: by mail-vx0-f173.google.com with SMTP id fl10so787972vcb.32
        for <dev@httpd.apache.org>; Mon, 31 Oct 2011 06:05:33 -0700 (PDT)
Received: by 10.182.13.1 with SMTP id d1mr2853919obc.74.1320066333302; Mon, 31
 Oct 2011 06:05:33 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.182.187.1 with HTTP; Mon, 31 Oct 2011 06:05:12 -0700 (PDT)
From: Bart van der Schans <b.vanderschans@1hippo.com>
Date: Mon, 31 Oct 2011 14:05:12 +0100
Message-ID: 
 <CAAOnkMuQTDK7ty_+MWRmPCZb_DJ6TXZrZsXEkw4p-7RA4G0heg@mail.gmail.com>
Subject: Add Set-Cookie to default cache ignore headers?
To: Httpd-dev-list <dev@httpd.apache.org>
Content-Type: text/plain; charset=ISO-8859-1

Hi all,
Is there any valid reason to allow mod_cache to cache
Set-Cookieheaders? Recently we encountered some problems because of
thisbehavior [1]. Of course you can always configure mod_cache to
notcache header, but to me it would make sense to add it to the list
ofdefault ignored headers [2]. The attached patch is rather trivial..
Regards,
Bart

[1] http://confluence.atlassian.com/display/CONFKB/Request+Assumes+Identity+of+Another+User+who+Logs+in+Concurrently+Due+to+Apache+CacheIgnoreHeaders[2]
http://httpd.apache.org/docs/2.2/mod/mod_cache.html#cacheignoreheaders