Set private flag for logged in users

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>

diff --git a/src/web/handlers_base.py b/src/web/handlers_base.py
index 49e2b3d3e921df17a20f16ec22207f0bfeec282e..0e26bbb05d90d6eb5cc2566d8905ceb61653064b 100644 (file)
--- a/src/web/handlers_base.py
+++ b/src/web/handlers_base.py
@@ -12,13 +12,18 @@ import tornado.web
 from .. import util
 
 class BaseHandler(tornado.web.RequestHandler):
+       def prepare(self):
+               # Mark this as private when someone is logged in
+               if self.current_user:
+                       self.add_header("Cache-Control", "private")
+
        def set_expires(self, seconds):
                # For HTTP/1.1
-               self.set_header("Cache-Control", "max-age=%s, must-revalidate" % seconds)
+               self.add_header("Cache-Control", "max-age=%s, must-revalidate" % seconds)
 
                # For HTTP/1.0
                expires = datetime.datetime.utcnow() + datetime.timedelta(seconds=seconds)
-               self.set_header("Expires", expires)
+               self.add_header("Expires", expires)
 
        def write_error(self, status_code, **kwargs):
                # Translate code into message