Title: do not cache request containing authorization header
Last modified: July 13, 2020

---

# do not cache request containing authorization header

 *  Resolved [MBayDesign](https://wordpress.org/support/users/mbaydesign/)
 * (@mbaydesign)
 * [5 years, 11 months ago](https://wordpress.org/support/topic/do-not-cache-request-containing-authorization-header/)
 * iThemes Security support is troubleshooting an issue on the wordpress portion
   of my site and they found that a curl request which produces a response with 
   an authorization header was being cached: X-LiteSpeed-Cache: hit.
 * Since caching a request with an Authorization header is not secure, I’m trying
   to fix this – I don’t know whether it’s the litespeed server settings on my server
   or the LSCache plugin. Unfortunately, the documentation for the LSCache plugin
   is NOT helping me make the right settings changes as there is nothing in the 
   interface that directly addresses authorization headers or items that shouldn’t
   be cached – other than perhaps excluding exact urls or strings, but that doesn’t
   really help me either. I would think that this setting especially would be default…
 * Can you point me in the right direction to correct this? Thank you!

Viewing 1 replies (of 1 total)

 *  Plugin Support [qtwrk](https://wordpress.org/support/users/qtwrk/)
 * (@qtwrk)
 * [5 years, 11 months ago](https://wordpress.org/support/topic/do-not-cache-request-containing-authorization-header/#post-13123824)
 * Hi,
 * > [View post on imgur.com](https://imgur.com/QmBKVB4)
 * you can use this setting to exclude certain URI from being cached.
 * Best regards,

Viewing 1 replies (of 1 total)

The topic ‘do not cache request containing authorization header’ is closed to new
replies.

 * ![](https://ps.w.org/litespeed-cache/assets/icon-256x256.png?rev=2554181)
 * [LiteSpeed Cache](https://wordpress.org/plugins/litespeed-cache/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/litespeed-cache/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/litespeed-cache/)
 * [Active Topics](https://wordpress.org/support/plugin/litespeed-cache/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/litespeed-cache/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/litespeed-cache/reviews/)

 * 1 reply
 * 2 participants
 * Last reply from: [qtwrk](https://wordpress.org/support/users/qtwrk/)
 * Last activity: [5 years, 11 months ago](https://wordpress.org/support/topic/do-not-cache-request-containing-authorization-header/#post-13123824)
 * Status: resolved