ApiEndpoint.CacheControl

Is Cache-Control header sent when the access token is used in the URI

This test checks whether the Cache-Control header is sent when a call is made to the API endpoint that passes the access token via the URL.

View source code on GitHub

Documents

This test is part of the following document(s):

• The OAuth 2.0 Authorization Framework: Bearer Token Usage (RFC6750), section 2.3 (should)

Back to the test case overview or the threat overview