Description
Erko Hansar opened SPR-14005 and commented
We have a Spring MVC application with Spring Security around it. In the MVC config we add resourceHandlers for static files together with cache periods. And Spring Security applies the default header configuration.
@Configuration
public class MvcConfig extends DelegatingWebMvcConfiguration {
@Override
protected void addResourceHandlers(ResourceHandlerRegistry registry) {
registry.addResourceHandler("/images/**").addResourceLocations("/images/").setCachePeriod(60 * 60 * 8);
}
...This has been working fine with Spring versions 4.2.1, 4.2.2, 4.2.3 and 4.2.4 combined with either Spring Security 4.0.2 or 4.0.4. The response contained the correct
Cache-Control:max-age=28800
header (and no Pragma header).
But after upgrading Spring to 4.2.5 it doesn't work anymore. Now the response contains:
Cache-Control:no-cache, no-store, max-age=0, must-revalidate
Pragma:no-cache
I also tried 4.2.6 and 4.3.0 BUILD-SNAPSHOTs, but the result was the same as with 4.2.5. There are a couple of issues related to Cache in 4.2.5 release notes, like #18390 and #18440, but I'm not sure if these are directly related.
Affects: 4.2.5
Issue Links:
- ResponseEntity CacheControl ignored / extended by RequestMappingHandlerAdapter [SPR-13867] #18440 ResponseEntity CacheControl ignored / extended by RequestMappingHandlerAdapter
- Reset Expires header in WebContentGenerator when caching resources [SPR-14053] #18625 Reset Expires header in WebContentGenerator when caching resources