Labels Milestones

New Issue

Set proper Cache-Control headers everywhere #42

Open

opened 3 years ago by phryk · 0 comments

phryk commented 3 years ago (Migrated from rnd.phryk.net)

Owner

I'd thought I'd done this already, but apparently only for theme resources and robots.txt.

Everything needs to have "public" enabled (at least optionally) for the httpd
to do proper caching so that not every single request gets processed by poobrains itself, which would make a DDoS or an outage due to lots of requests to expensive endpoints pretty easy to happen. This should most definitely be considered a bug.

config already contains 'CACHE_SHORT' which is used exactly nowhere.
It should apply to all non-Administerable Renderables.

Administerable should get an extra BooleanField to activate public caching (default=False).

I'd thought I'd done this already, but apparently only for theme resources and robots.txt. **Everything** needs to have "public" enabled (at least optionally) for the httpd to do proper caching so that not every single request gets processed by poobrains itself, which would make a DDoS or an outage due to lots of requests to expensive endpoints pretty easy to happen. This should most definitely be considered a bug. config already contains 'CACHE_SHORT' which is used exactly nowhere. It should apply to all non-`Administerable` `Renderable`s. `Administerable` should get an extra `BooleanField` to activate public caching (default=False).

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

compat

main

trashpandas

Labels

Apply labels

Clear labels

ANA
Data analysis BUG
Bug CSS
[S]CSS DOC
Documentation; Content – for the rendering system, see 'doc' DX
Developer eXperience ECO
Ecological sustainability FET
Feature request GFX
Graphics work. Icons and such. PRO
Propaganda, Marketing, Building An Audience – call it what you will SEC
Security TPL
Templates; poobrains/theme/default – for theming issues, see 'rendering' UX
User eXperience VIS
Data visualization analysis
analysis subsystem; poobrains.analysis analysis.data
poobrains analysis data component; poobrains.analysis.data analysis.editor
Data editor; poobrains.analysis.editor analysis.util
analysis utilities; poobrains.analysis.util analysis.visualization
data visualization; poobrains.analysis.visualization auth
Authentication & Authorization system; poobrains.auth cli
Command Line Interface; poobrains.cli core
Core; Every piece of python code that's not part of a distinct subsystem doc
Documentation rendering system; poobrains.doc – for content use 'DOC' form
Forms system; poobrains.form mailing
Mail system; poobrains.mailing md
Markdown integration; poobrains.md rendering
Rendering system; poobrains.rendering storage
Storage system; poobrains.storage svg
SVG system; poobrains.svg svg.color
Color; poobrains.svg.color svg.palettes
procedural palettes; poobrains.svg.palettes testing
Testing system; poobrains.testing

No Label ANA BUG CSS DOC DX ECO FET GFX PRO SEC TPL UX VIS analysis analysis.data analysis.editor analysis.util analysis.visualization auth cli core doc form mailing md rendering storage svg svg.color svg.palettes testing

Milestone

Set milestone

Clear milestone

No items

No Milestone

0.0.0.0-alpha

Projects

Clear projects

No project

Assignees

Assign users

Clear assignees

No Assignees

1 Participants

Notifications

Subscribe

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: phryk-evil-mad-sciences-llc/poobrains#42

Write Preview

Loading…

Cancel

Save

There is no content yet.