You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

234 lines
8.9 KiB

3 years ago
  1. <?php
  2. /*
  3. * This file is part of the Symfony package.
  4. *
  5. * (c) Fabien Potencier <fabien@symfony.com>
  6. *
  7. * For the full copyright and license information, please view the LICENSE
  8. * file that was distributed with this source code.
  9. */
  10. namespace Symfony\Component\HttpKernel\HttpCache;
  11. use Symfony\Component\HttpFoundation\Response;
  12. /**
  13. * ResponseCacheStrategy knows how to compute the Response cache HTTP header
  14. * based on the different response cache headers.
  15. *
  16. * This implementation changes the main response TTL to the smallest TTL received
  17. * or force validation if one of the surrogates has validation cache strategy.
  18. *
  19. * @author Fabien Potencier <fabien@symfony.com>
  20. */
  21. class ResponseCacheStrategy implements ResponseCacheStrategyInterface
  22. {
  23. /**
  24. * Cache-Control headers that are sent to the final response if they appear in ANY of the responses.
  25. */
  26. private const OVERRIDE_DIRECTIVES = ['private', 'no-cache', 'no-store', 'no-transform', 'must-revalidate', 'proxy-revalidate'];
  27. /**
  28. * Cache-Control headers that are sent to the final response if they appear in ALL of the responses.
  29. */
  30. private const INHERIT_DIRECTIVES = ['public', 'immutable'];
  31. private $embeddedResponses = 0;
  32. private $isNotCacheableResponseEmbedded = false;
  33. private $age = 0;
  34. private $flagDirectives = [
  35. 'no-cache' => null,
  36. 'no-store' => null,
  37. 'no-transform' => null,
  38. 'must-revalidate' => null,
  39. 'proxy-revalidate' => null,
  40. 'public' => null,
  41. 'private' => null,
  42. 'immutable' => null,
  43. ];
  44. private $ageDirectives = [
  45. 'max-age' => null,
  46. 's-maxage' => null,
  47. 'expires' => null,
  48. ];
  49. /**
  50. * {@inheritdoc}
  51. */
  52. public function add(Response $response)
  53. {
  54. ++$this->embeddedResponses;
  55. foreach (self::OVERRIDE_DIRECTIVES as $directive) {
  56. if ($response->headers->hasCacheControlDirective($directive)) {
  57. $this->flagDirectives[$directive] = true;
  58. }
  59. }
  60. foreach (self::INHERIT_DIRECTIVES as $directive) {
  61. if (false !== $this->flagDirectives[$directive]) {
  62. $this->flagDirectives[$directive] = $response->headers->hasCacheControlDirective($directive);
  63. }
  64. }
  65. $age = $response->getAge();
  66. $this->age = max($this->age, $age);
  67. if ($this->willMakeFinalResponseUncacheable($response)) {
  68. $this->isNotCacheableResponseEmbedded = true;
  69. return;
  70. }
  71. $isHeuristicallyCacheable = $response->headers->hasCacheControlDirective('public');
  72. $maxAge = $response->headers->hasCacheControlDirective('max-age') ? (int) $response->headers->getCacheControlDirective('max-age') : null;
  73. $this->storeRelativeAgeDirective('max-age', $maxAge, $age, $isHeuristicallyCacheable);
  74. $sharedMaxAge = $response->headers->hasCacheControlDirective('s-maxage') ? (int) $response->headers->getCacheControlDirective('s-maxage') : $maxAge;
  75. $this->storeRelativeAgeDirective('s-maxage', $sharedMaxAge, $age, $isHeuristicallyCacheable);
  76. $expires = $response->getExpires();
  77. $expires = null !== $expires ? (int) $expires->format('U') - (int) $response->getDate()->format('U') : null;
  78. $this->storeRelativeAgeDirective('expires', $expires >= 0 ? $expires : null, 0, $isHeuristicallyCacheable);
  79. }
  80. /**
  81. * {@inheritdoc}
  82. */
  83. public function update(Response $response)
  84. {
  85. // if we have no embedded Response, do nothing
  86. if (0 === $this->embeddedResponses) {
  87. return;
  88. }
  89. // Remove validation related headers of the master response,
  90. // because some of the response content comes from at least
  91. // one embedded response (which likely has a different caching strategy).
  92. $response->setEtag(null);
  93. $response->setLastModified(null);
  94. $this->add($response);
  95. $response->headers->set('Age', $this->age);
  96. if ($this->isNotCacheableResponseEmbedded) {
  97. if ($this->flagDirectives['no-store']) {
  98. $response->headers->set('Cache-Control', 'no-cache, no-store, must-revalidate');
  99. } else {
  100. $response->headers->set('Cache-Control', 'no-cache, must-revalidate');
  101. }
  102. return;
  103. }
  104. $flags = array_filter($this->flagDirectives);
  105. if (isset($flags['must-revalidate'])) {
  106. $flags['no-cache'] = true;
  107. }
  108. $response->headers->set('Cache-Control', implode(', ', array_keys($flags)));
  109. $maxAge = null;
  110. if (is_numeric($this->ageDirectives['max-age'])) {
  111. $maxAge = $this->ageDirectives['max-age'] + $this->age;
  112. $response->headers->addCacheControlDirective('max-age', $maxAge);
  113. }
  114. if (is_numeric($this->ageDirectives['s-maxage'])) {
  115. $sMaxage = $this->ageDirectives['s-maxage'] + $this->age;
  116. if ($maxAge !== $sMaxage) {
  117. $response->headers->addCacheControlDirective('s-maxage', $sMaxage);
  118. }
  119. }
  120. if (is_numeric($this->ageDirectives['expires'])) {
  121. $date = clone $response->getDate();
  122. $date->modify('+'.($this->ageDirectives['expires'] + $this->age).' seconds');
  123. $response->setExpires($date);
  124. }
  125. }
  126. /**
  127. * RFC2616, Section 13.4.
  128. *
  129. * @see https://www.w3.org/Protocols/rfc2616/rfc2616-sec13.html#sec13.4
  130. */
  131. private function willMakeFinalResponseUncacheable(Response $response): bool
  132. {
  133. // RFC2616: A response received with a status code of 200, 203, 300, 301 or 410
  134. // MAY be stored by a cache […] unless a cache-control directive prohibits caching.
  135. if ($response->headers->hasCacheControlDirective('no-cache')
  136. || $response->headers->getCacheControlDirective('no-store')
  137. ) {
  138. return true;
  139. }
  140. // Last-Modified and Etag headers cannot be merged, they render the response uncacheable
  141. // by default (except if the response also has max-age etc.).
  142. if (\in_array($response->getStatusCode(), [200, 203, 300, 301, 410])
  143. && null === $response->getLastModified()
  144. && null === $response->getEtag()
  145. ) {
  146. return false;
  147. }
  148. // RFC2616: A response received with any other status code (e.g. status codes 302 and 307)
  149. // MUST NOT be returned in a reply to a subsequent request unless there are
  150. // cache-control directives or another header(s) that explicitly allow it.
  151. $cacheControl = ['max-age', 's-maxage', 'must-revalidate', 'proxy-revalidate', 'public', 'private'];
  152. foreach ($cacheControl as $key) {
  153. if ($response->headers->hasCacheControlDirective($key)) {
  154. return false;
  155. }
  156. }
  157. if ($response->headers->has('Expires')) {
  158. return false;
  159. }
  160. return true;
  161. }
  162. /**
  163. * Store lowest max-age/s-maxage/expires for the final response.
  164. *
  165. * The response might have been stored in cache a while ago. To keep things comparable,
  166. * we have to subtract the age so that the value is normalized for an age of 0.
  167. *
  168. * If the value is lower than the currently stored value, we update the value, to keep a rolling
  169. * minimal value of each instruction.
  170. *
  171. * If the value is NULL and the isHeuristicallyCacheable parameter is false, the directive will
  172. * not be set on the final response. In this case, not all responses had the directive set and no
  173. * value can be found that satisfies the requirements of all responses. The directive will be dropped
  174. * from the final response.
  175. *
  176. * If the isHeuristicallyCacheable parameter is true, however, the current response has been marked
  177. * as cacheable in a public (shared) cache, but did not provide an explicit lifetime that would serve
  178. * as an upper bound. In this case, we can proceed and possibly keep the directive on the final response.
  179. */
  180. private function storeRelativeAgeDirective(string $directive, ?int $value, int $age, bool $isHeuristicallyCacheable)
  181. {
  182. if (null === $value) {
  183. if ($isHeuristicallyCacheable) {
  184. /*
  185. * See https://datatracker.ietf.org/doc/html/rfc7234#section-4.2.2
  186. * This particular response does not require maximum lifetime; heuristics might be applied.
  187. * Other responses, however, might have more stringent requirements on maximum lifetime.
  188. * So, return early here so that the final response can have the more limiting value set.
  189. */
  190. return;
  191. }
  192. $this->ageDirectives[$directive] = false;
  193. }
  194. if (false !== $this->ageDirectives[$directive]) {
  195. $value -= $age;
  196. $this->ageDirectives[$directive] = null !== $this->ageDirectives[$directive] ? min($this->ageDirectives[$directive], $value) : $value;
  197. }
  198. }
  199. }