Proxy server could cache http response when it is not private #20897

kklem0 · 2020-05-10T09:10:57Z

Proxy server could cache http response when it is not private
Need this for nextcloud/mail#3071

kklem0 · 2020-05-10T09:17:41Z

See https://www.nginx.com/blog/nginx-caching-guide/

How Does NGINX Determine Whether or Not to Cache Something?

By default, NGINX respects the Cache-Control headers from origin servers. It does not cache responses with Cache-Control set to Private, No-Cache, or No-Store or with Set-Cookie in the response header. NGINX only caches GET and HEAD client requests. You can override these defaults as described in the answers below.

kklem0 · 2020-05-10T09:22:42Z

Note that there are situations when proxy caching make sense like avatar, so I'm not 100% sure of this PR if we should just make everything only cache by browser or if we wanna have another function for private caching.

Signed-off-by: Clement Wong <[email protected]>

rullzer · 2020-05-10T18:11:45Z

right yes. This was on my list for ages.

So avatars is not a good example. But the endpoints that server bundle js or compiled scss are public of course.

Would you mind adding an optional argument 'public' (set to false by default)?

Signed-off-by: Clement Wong <[email protected]>

kklem0 · 2020-05-10T20:11:51Z

Don't think the failed tests are related.

ChristophWurst · 2020-05-12T08:32:13Z

Don't think the failed tests are related.

https://drone.nextcloud.com/nextcloud/server/28807/10/4

That one is :)

ChristophWurst · 2020-05-12T08:32:47Z

@rullzer backport?

kklem0 · 2020-05-12T09:50:23Z

Don't think the failed tests are related.

https://drone.nextcloud.com/nextcloud/server/28807/10/4

That one is :)

Missed that, and was looking at the wrong test file.
Thanks!

Signed-off-by: Clement Wong <[email protected]>

kklem0 · 2020-05-12T11:04:07Z

@rullzer backport?

Would be cool if it can be backported as I need to use it with the mail app and I'm hoping to ditch my custom code in it.

rullzer · 2020-05-12T12:07:56Z

I'm not 100% sure about the backport. Since it changes the API.

Of course it just adds a parameter which php will happily swallow....

ChristophWurst · 2020-05-12T12:15:35Z

I'm not 100% sure about the backport. Since it changes the API.

If we don't want to change the API we should backport the default to private caching IMO.

kklem0 · 2020-05-12T20:14:35Z

Shall I default to $public = true for now?

rullzer · 2020-05-13T06:26:53Z

Nah leave it to false I'd say. Like in the worst case you don't cache something in the proxy that could be cached in theory.

ChristophWurst · 2020-05-13T06:29:00Z

/backport to stable19

ChristophWurst · 2020-05-13T06:29:03Z

/backport to stable18

ChristophWurst · 2020-05-13T06:29:07Z

/backport to stable17

backportbot-nextcloud · 2020-05-13T06:34:32Z

The backport to stable18 failed. Please do this backport manually.

backportbot-nextcloud · 2020-05-13T06:34:40Z

The backport to stable17 failed. Please do this backport manually.

kklem0 requested a review from ChristophWurst May 10, 2020 09:10

Proxy server could cache http response when it is not private

401210d

Signed-off-by: Clement Wong <[email protected]>

kklem0 force-pushed the bugfix/httpcache branch from 354f54f to 401210d Compare May 10, 2020 09:24

rullzer self-assigned this May 10, 2020

rullzer added the 2. developing Work in progress label May 10, 2020

Add public argument to Http cacheFor()

e9be3a9

Signed-off-by: Clement Wong <[email protected]>

kklem0 force-pushed the bugfix/httpcache branch from 0cffd89 to e9be3a9 Compare May 10, 2020 18:24

ChristophWurst approved these changes May 12, 2020

View reviewed changes

Fix http cache test

979dd1b

Signed-off-by: Clement Wong <[email protected]>

kklem0 force-pushed the bugfix/httpcache branch from 96ce64d to 979dd1b Compare May 12, 2020 09:50

rullzer merged commit 4fbea31 into master May 13, 2020

rullzer deleted the bugfix/httpcache branch May 13, 2020 06:27

backportbot-nextcloud bot added the backport-request label May 13, 2020

backportbot-nextcloud bot mentioned this pull request May 13, 2020

[stable19] Proxy server could cache http response when it is not private #20944

Merged

backportbot-nextcloud bot removed the backport-request label May 13, 2020

kklem0 mentioned this pull request May 13, 2020

[stable18] Proxy server could cache http response when it is not private #20955

Merged

Uh oh!

Proxy server could cache http response when it is not private #20897

Proxy server could cache http response when it is not private #20897

Uh oh!

Conversation

kklem0 commented May 10, 2020

Uh oh!

kklem0 commented May 10, 2020

Uh oh!

kklem0 commented May 10, 2020

Uh oh!

rullzer commented May 10, 2020

Uh oh!

kklem0 commented May 10, 2020

Uh oh!

ChristophWurst commented May 12, 2020

Uh oh!

ChristophWurst commented May 12, 2020

Uh oh!

kklem0 commented May 12, 2020

Uh oh!

kklem0 commented May 12, 2020

Uh oh!

rullzer commented May 12, 2020

Uh oh!

ChristophWurst commented May 12, 2020

Uh oh!

kklem0 commented May 12, 2020

Uh oh!

rullzer commented May 13, 2020

Uh oh!

ChristophWurst commented May 13, 2020

Uh oh!

ChristophWurst commented May 13, 2020

Uh oh!

ChristophWurst commented May 13, 2020

Uh oh!

backportbot-nextcloud bot commented May 13, 2020

Uh oh!

backportbot-nextcloud bot commented May 13, 2020

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants