On Thursday, October 6, 2011, IAlex ialex.wiki@gmail.com wrote:
Le 7 oct. 2011 à 06:21, Chad a écrit :
Well we do serve the "logged out" cookie. What real purpose that serves, I don't know :)
It's to bypass the browser cache, and to not let the user see a page with it's user name at the top when he just logged out.
Couldn't deleting cookies have the same effect? If we do want to set or keep cookies on logout, do they need to be included in X-Vary-Options and bypass squid caching? We could also consider loading login/userbar stuff via javascript and allow logged in users to take advantage of squid caching provided care was taken for active editors.