fix: set no-store cache control on jwt renew response

NGPixel · web-flow · commit 904260fd4472 · 2024-05-23T23:01:38.000-04:00
diff --git a/server/core/auth.js b/server/core/auth.js
@@ -156,6 +156,9 @@ module.exports = {
           } else {
             res.cookie('jwt', newToken.token, { expires: DateTime.utc().plus({ days: 365 }).toJSDate() })
           }
+
+          // Avoid caching this response
+          res.set('Cache-Control', 'no-store')
         } catch (errc) {
           WIKI.logger.warn(errc)
           return next()
