Applying this info they suppose it really is Harmless to return a cached Edition of the main HTTP GET. In case you break the HTTP specification you possibility breaking HTTP shopper and proxies while in the wild. Never do it :)So how exactly does not sticking information while in the URL ensure it is more secure? (Btw, I'm one of those who thinks t