How to clear browser's cache from server side?

Question

I have to create a web application that deals with user's sensitive information. I need to immediately clear the browser's cache after user logs out since cached data would be vulnerable. Client's browser should be enforced to clear the Cache from server side. Also all cache policies must be exposed to the client from the server side.

Is there any solution to this problem?

The best you can do is request to the browser (and all intermediate caches -- there might be some) that your pages should not be cached. Even that is only a hint. You cannot programmatically erase a visitor's cache. (Think about what a nightmare that would be.) — Mike Daniels, Apr 05 '10 at 03:22

score 8 · Answer 1 · answered Apr 05 '10 at 03:05

8

Set the response to expire immediately, and for good measure tell proxies, etc., not to cache:

Expires: 0
Cache-control: private

answered Apr 05 '10 at 03:05

Marcelo Cantos

181,030
38
327
365

Yep, the only solution is to tell the browser not to cache at all. – Tim Aug 29 '10 at 22:53

How to clear browser's cache from server side?

1 Answers1

Linked