phryk-evil-mad-sciences-llc
/
poobrains
1
0
Fork 0
Code Issues 37 Pull Requests Projects Releases Wiki Activity

Set proper Cache-Control headers everywhere #42

New Issue
Open
opened 2020-07-28 17:00:27 +00:00 by phryk · 0 comments
phryk commented 2020-07-28 17:00:27 +00:00 (Migrated from rnd.phryk.net)
Copy Link

I'd thought I'd done this already, but apparently only for theme resources and robots.txt.

Everything needs to have "public" enabled (at least optionally) for the httpd
to do proper caching so that not every single request gets processed by poobrains itself, which would make a DDoS or an outage due to lots of requests to expensive endpoints pretty easy to happen. This should most definitely be considered a bug.

config already contains 'CACHE_SHORT' which is used exactly nowhere.
It should apply to all non-Administerable Renderables.

Administerable should get an extra BooleanField to activate public caching (default=False).

I'd thought I'd done this already, but apparently only for theme resources and robots.txt. **Everything** needs to have "public" enabled (at least optionally) for the httpd to do proper caching so that not every single request gets processed by poobrains itself, which would make a DDoS or an outage due to lots of requests to expensive endpoints pretty easy to happen. This should most definitely be considered a bug. config already contains 'CACHE_SHORT' which is used exactly nowhere. It should apply to all non-`Administerable` `Renderable`s. `Administerable` should get an extra `BooleanField` to activate public caching (default=False).
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
main
compat
trashpandas
Labels
Clear labels   
ANA

Data analysis

  
BUG

Bug

  
CSS

[S]CSS

  
DOC

Documentation; Content – for the rendering system, see 'doc'

  
DX

Developer eXperience

  
ECO

Ecological sustainability

  
FET

Feature request

  
GFX

Graphics work. Icons and such.

  
PRO

Propaganda, Marketing, Building An Audience – call it what you will

  
SEC

Security

  
TPL

Templates; poobrains/theme/default – for theming issues, see 'rendering'

  
UX

User eXperience

  
VIS

Data visualization

  
analysis

analysis subsystem; poobrains.analysis

  
analysis.data

poobrains analysis data component; poobrains.analysis.data

  
analysis.editor

Data editor; poobrains.analysis.editor

  
analysis.util

analysis utilities; poobrains.analysis.util

  
analysis.visualization

data visualization; poobrains.analysis.visualization

  
auth

Authentication & Authorization system; poobrains.auth

  
cli

Command Line Interface; poobrains.cli

  
core

Core; Every piece of python code that's not part of a distinct subsystem

  
doc

Documentation rendering system; poobrains.doc – for content use 'DOC'

  
form

Forms system; poobrains.form

  
mailing

Mail system; poobrains.mailing

  
md

Markdown integration; poobrains.md

  
rendering

Rendering system; poobrains.rendering

  
storage

Storage system; poobrains.storage

  
svg

SVG system; poobrains.svg

  
svg.color

Color; poobrains.svg.color

  
svg.palettes

procedural palettes; poobrains.svg.palettes

  
testing

Testing system; poobrains.testing

No Label
ANA
BUG
CSS
DOC
DX
ECO
FET
GFX
PRO
SEC
TPL
UX
VIS
analysis
analysis.data
analysis.editor
analysis.util
analysis.visualization
auth
cli
core
doc
form
mailing
md
rendering
storage
svg
svg.color
svg.palettes
testing
Milestone
Clear milestone
No items
No Milestone
0.0.0.0-alpha
Projects
Clear projects
No project
Assignees
Clear assignees
No Assignees
1 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: phryk-evil-mad-sciences-llc/poobrains#42
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?