From af4da56f1ad4d3ef7b06557bae365da2ea27a897 Mon Sep 17 00:00:00 2001
From: Pierre Schmitz <pierre@archlinux.de>
Date: Thu, 14 Nov 2013 23:19:13 +0100
Subject: Update to MediaWiki 1.21.3

---
 includes/actions/RawAction.php | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'includes/actions')

diff --git a/includes/actions/RawAction.php b/includes/actions/RawAction.php
index d1d457c0..12ce9f98 100644
--- a/includes/actions/RawAction.php
+++ b/includes/actions/RawAction.php
@@ -94,6 +94,9 @@ class RawAction extends FormlessAction {
 		# Output may contain user-specific data;
 		# vary generated content for open sessions on private wikis
 		$privateCache = !User::groupHasPermission( '*', 'read' ) && ( $smaxage == 0 || session_id() != '' );
+		// Bug 53032 - make this private if user is logged in,
+		// so we don't accidentally cache cookies
+		$privateCache = $privateCache ?: $this->getUser()->isLoggedIn();
 		# allow the client to cache this for 24 hours
 		$mode = $privateCache ? 'private' : 'public';
 		$response->header( 'Cache-Control: ' . $mode . ', s-maxage=' . $smaxage . ', max-age=' . $maxage );
-- 
cgit v1.2.2