From 185aee70dfd662ffdac653967331349e600abd95 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ivar=20Conradi=20=C3=98sthus?= <ivarconr@gmail.com>
Date: Tue, 4 May 2021 21:33:32 +0200
Subject: [PATCH] fix: /api/admin/user should not allow caching

---
 src/lib/routes/admin-api/user.ts | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/lib/routes/admin-api/user.ts b/src/lib/routes/admin-api/user.ts
index 75fd155707..4715b75f14 100644
--- a/src/lib/routes/admin-api/user.ts
+++ b/src/lib/routes/admin-api/user.ts
@@ -54,6 +54,7 @@ class UserController extends Controller {
     }
 
     async getUser(req: IAuthRequest, res: Response): Promise<void> {
+        res.setHeader('cache-control', 'no-store');
         const { user } = req;
         if (user) {
             const permissions = await this.accessService.getPermissionsForUser(