ChatGPT解决这个技术问题 Extra ChatGPT

HTTP Cache Control max-age, must-revalidate

I have a couple of queries related to Cache-Control.

If I specify Cache-Control max-age=3600, must-revalidate for a static html/js/images/css file, with Last Modified Header defined in HTTP header:

Does browser/proxy cache(like Squid/Akamai) go all the way to origin server to validate before max-age expires? Or will it serve content from cache till max-age expires? After max-age expiry (that is expiry from cache), is there a If-Modified-Since check or is content re-downloaded from origin server w/o If-Modified-Since check?

j
james.garriss

a) If the server includes this header: 

Cache-Control "max-age=3600, must-revalidate"

it is telling both client caches and proxy caches that once the content is stale (older than 3600 seconds) they must revalidate at the origin server before they can serve the content. This should be the default behavior of caching systems, but the must-revalidate directive makes this requirement unambiguous.

b) The client should revalidate. It might revalidate using the If-Match or If-None-Match headers with an ETag, or it might use the If-Modified-Since or If-Unmodified-Since headers with a date.

To me the protocol is a bit ambiguous here, but in practice I have found that must-revalidate means it must revalidate regardless of max-age.
@ColinM, What do you mean? must-revalidate means it must revalidate only when max-age is reached no?
I'm calling "citation needed" on this answer. There seems to be some debate on whether it's accurate.
According to RFC2616[1], "When the must-revalidate directive is present in a response received by a cache, that cache MUST NOT use the entry after it becomes stale to respond to a subsequent request without first revalidating it with the origin server" This means that the official spec agrees with the answer, and not with @ColinM. w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.9.4
@superjoe30 I agree that the answer is correct according to the RFC. My comment was just noting that in practice, some caches essentially ignore "max-age" when "must-revalidate" is present. Unfortunately I performed these tests a long time ago and do not remember which ones specifically.. Overall I'm pretty disappointed in the adherence to RFC of most caching reverse proxies (nginx, Apache, Cloudfront, etc..), and especially in the lack of support for things like true server-side content negotiation.
M
Marcel Korpel

a. Look at the ‘Stats’ tab on this page and see what happens.

b. After expiration the browser will check at the server if the file is updated. If not, the server will respond with a 304 Not Modified header and nothing is downloaded.

You can check this behaviour yourself by looking at the ‘Net’ panel in Firebug or similar tools. Just re-enter the URL in the address bar and compare the number of HTTP requests with the number of requests when your cache is empty.

m
mhenry1384

The given answers are incorrect, at least for web browsers in 2019.

"After expiration the browser will check at the server if the file is updated" <- not true

I have a static file served with "Cache-Control: public,must-revalidate,max-age=864000" and both Chrome and Firefox do a request every time (and get a 304 Not Modified back every time).

Are you sure? My chrome get "from memory cache" when setting "Cache-Control: public,must-revalidate,max-age=864000" in nginx
I believe this is an incorrect statement. MDN says a 304 implicitly happens for cached files. Further down it also notes that extra 304s could pop up just to display cached results in the dev tools. MDN still says that a must-revalidate "Indicates that once a resource becomes stale, caches must not use their stale copy without successful validation on the origin server."
I ran into a situation like this after adding must-revalidate to the caching policy of a specific file that previously only had max-age set. The problem was that the browser had retained the old If-Modified-Since value from a previous request so was always checking the resource and getting a 304 response. After clearing my cache the new policy was applied and now the file is served directly from memory/disk cache as expected.

关注公众号,不定期副业成功案例分享
Follow WeChat

Success story sharing

Want to stay one step ahead of the latest teleworks?

Subscribe Now

HuntsBot,a one-stop outsourcing task, remote job, product ideas sharing and subscription platform, which supports DingTalk, Lark, WeCom, Email and Telegram robot subscription. The platform will push outsourcing task requirements, remote work opportunities, product ideas to every subscribed user with timely, stable and reliable.

简体中文 English

Platform

Support

Links

Contact US

Any questions or suggestions during use, you can contact us in the following ways:

Email: huntsbot@xinbeitime.com

Copyright© 2022-2023 www.huntsbot.com 浙ICP备2022000860号-4 All Rights Reserved.