diff --git a/misc.go b/misc.go
index 3f3f369fd11c23b2bbda00bf741eb15b56d57050..b7a029bd57cc76d1c9e1e2b6871e52cf9b22e598 100644
--- a/misc.go
+++ b/misc.go
@@ -84,6 +84,7 @@ func (r *oauthProxy) accessForbidden(w http.ResponseWriter, req *http.Request) c
 
 // redirectToURL redirects the user and aborts the context
 func (r *oauthProxy) redirectToURL(url string, w http.ResponseWriter, req *http.Request, statusCode int) context.Context {
+	w.Header().Add("Cache-Control", "no-cache, no-store, must-revalidate, max-age=0")
 	http.Redirect(w, req, url, statusCode)
 
 	return r.revokeProxy(w, req)