On Mon, 12 Jan 2004, Konrad wrote:
> 1) Does squid with ESI support Basic Authorization? becouse I always get
> TCP_MISS/200
Squid generally does not cache authenticated content due to security
restrictions of such content outlined by the HTTP specifications.
In normal proxies this is what you want in order to not risk sensitive
information leakage between users, but in an accelerator it may or may not
be what is wanted all depending on the nature of the content.
To get authenticated content cached in a shared cache in must be
classified as public information by "Cache-Control: public". This tells
caches that it is safe to cache the content even if the request was
authenticated. There is a quite lengthy discussion on this in the HTTP
specifications if your want to read more on the subject.
Regards
Henrik
Received on Mon Jan 12 2004 - 16:14:40 MST
This archive was generated by hypermail pre-2.1.9 : Sun Feb 01 2004 - 12:00:05 MST