Is Cache-Control header sent when the access token is used in the URI

This test checks whether the Cache-Control header is sent when a call is made to the API endpoint that passes the access token via the URL.

View source code on GitHub


This test is part of the following document(s):

Back to the test case overview or the threat overview