* WGs marked with an * asterisk has had at least one new draft made available during the last 5 days

Ticket #174 (closed design: fixed)

Opened 5 years ago

Last modified 4 years ago

Caching authenticated responses

Reported by: mnot@pobox.com Owned by:
Priority: normal Milestone: 10
Component: p6-cache Severity: Active WG Document
Keywords: Cc:
Origin: Pine.SGI.4.10.10007192325560.19376-100000@surf.ircache.net

Description

  1. The very last sentence of Sec 14.9.4 (under proxy-revalidate)

says: ...such authenticated responses also need the public cache control directive in order to allow them to be cached at all

Yet, Sec 14.8 lists three cache-control directives that allow a shared cache to reuse an authenticatd response: s-maxage, must-revalidate, and public.

  1. If must-revalidate alone is enough to allow an authenticated

response to be cached, and if proxy-revalidate is the same as must-revalidate for a shared cache, is proxy-revalidate alone enough to allow an authenticated response to be cached?

If so, should proxy-revalidate be listed in section 14.8?

  1. RFC 2617, Sec 3.2.2.5 says:

when a shared cache ... has received a request containing an Authorization header and a response from relaying that request, it MUST NOT return that response as a reply to any other request, unless one of two Cache-Control (see section 14.9 of [RFC2616]) directives was present in the response.

I believe this is referring to section 14.8, rather than 14.9, and "two" is not the right number?

  1. Finally, Sec 14.8 doesn't mention if a non-shared cache needs to treat

an authenticated response specially. I assume that a non-shared cache can store and reuse an authenticated response by default. Should that be made explicit?

Change History

comment:1 Changed 4 years ago by mnot@pobox.com

From [834]:

Clarify caching of authenticated responses by shared caches (see #174)

comment:2 Changed 4 years ago by julian.reschke@gmx.de

  • Priority set to normal
  • Milestone changed from unassigned to 10

comment:3 Changed 4 years ago by mnot@pobox.com

  • Status changed from new to closed
  • Resolution set to incorporated

comment:4 Changed 4 years ago by mnot@pobox.com

  • Status changed from closed to reopened
  • Resolution incorporated deleted

comment:5 Changed 4 years ago by mnot@pobox.com

  • Status changed from reopened to closed
  • Resolution set to fixed
Note: See TracTickets for help on using tickets.