Identity of the proxy in the cache key #729
Assignees
Labels
Comments
|
This was written with the assumption that the cache was co-located with the client, not the proxy. Will see if I can make that more clear. |
|
Discussed in Feb 21 interim; may need clarification. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This text says that a proxy doesn't store things like Proxy-Authenticate unless the cache key includes the proxy identity.
Should this be the identity of the proxy's client instead? Maybe the intent of this was to say that a proxy cache that uses authentication is prohibited from storing these header fields unless they might be valid when reused. But including the identity of the proxy (as opposed to the user of the proxy) could lead to these fields always being stored, because the proxy identity is probably the same for all its users.
The effect of including the identity of the client in the cache key would be to effectively make the responses containing these fields private, which works to ensure that different clients don't end up with bad authentication challenges being sent to them from cache. That might be OK.
That all said, caching something like Proxy-Authenticate and playing it back later seems like it might cause problems too, so maybe I'm missing something.
The text was updated successfully, but these errors were encountered: