nextcloud/core/Controller
Lukas Reschke 2f87fb6b45
Add Clear-Site-Data header
This adds a Clear-Site-Data header to the logout response which will delete all relevant data in the caches which may contain potentially sensitive content.

See https://w3c.github.io/webappsec-clear-site-data/#header for the definition of the types.

Ref https://twitter.com/mikewest/status/877149667909406723

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
2017-06-20 19:46:10 +02:00
..
AvatarController.php Cache all avatar responses 2016-11-30 09:43:36 +01:00
ClientFlowLoginController.php Add tests for ClientFlowLoginController 2017-05-18 20:49:08 +02:00
ContactsMenuController.php add contactsmenu popover 2017-04-26 09:26:53 +02:00
CssController.php Automatic injection for CssController 2017-05-10 09:42:40 +02:00
JsController.php Automatic injection for JsController 2017-05-10 09:42:15 +02:00
LoginController.php Add Clear-Site-Data header 2017-06-20 19:46:10 +02:00
LostController.php Disable the API endpoints as well 2017-05-11 17:03:57 +02:00
OCJSController.php Move OC_Defaults to OCP\Defaults 2017-04-09 21:43:01 -05:00
OCSController.php Adjust existing bruteforce protection code 2017-04-14 13:42:40 +02:00
PreviewController.php Handle more error cases 2017-05-02 13:43:48 +02:00
SetupController.php Fix public page css fallback loading 2017-02-01 18:03:51 +01:00
TwoFactorChallengeController.php Add rate limit to TOTP solve challenge controller 2017-04-22 07:59:40 +02:00
UserController.php UserController does not require Defaults 2016-08-29 21:14:50 +02:00