Added a few tests

[NicoletaOita]

Added negative test for the case when authorization headers do not match, for no-store and must-revalidate. This PR is still work in progress.

[AdrianCozma]

@hthetiot can you please do a review? please note that the tests are written so that they reproduce the issues that were opened by Nicoleta in https://github.com/kaazing/QA-Roadmap/issues/412#issuecomment-344900820