Query re: Browser Caching, specifically:

response.headers["Cache-Control"] = "no-cache, no-store, max-age=0, must-revalidate"

It seems that — since Rails 5.2 — cache-control headers are normalized in a way that means must-revalidate and max-age=0 will get stripped when used in conjunction with no-cache and no-store. See also this Issue on the Rails repo.

Thanks @cjbarnaby! I've updated the guide to use the normalized header to avoid confusion.