Page MenuHomePhabricator
Create Task
Maniphest T316204

Investigate UI asset caching
Closed, ResolvedPublicBUG REPORT
Actions

Description

I noticed that if we update the UI image (with new JS app bundle?) the dashboard sometimes breaks for me.

Used Software: Firefox Developer Edition 105.0b2 (64-bit) on Ubuntu 22.04.1 LTS

What happens?
I visit wikibase.cloud, navigate to my dashboard and it's broken. The list of wikis is the wrong count of entries and the data is missing. The /mine API request looks fine, my suspicion is that the app.js gets cached by the browser and somehow doesn't play nicely. If I would reload the page, everything worked fine, but the issue persisted and happened again on the next visit.

A possible solution could be to define some cache control headers for the ui js bundle in its nginx config.

The filenames of the js & css bundles contain a random string to avoid this problem, so I guess we have to look at something else. Maybe the html gets cached?

This article gives a decent overview of controlling client caching with http headers using nginx: https://www.howtogeek.com/devops/how-to-configure-cache-control-headers-in-nginx/
\

ACs:

  • we know the error source of this experience

image.png (807×1 px, 526 KB)

Peek 2022-08-25 12-24.gif (937×1 px, 660 KB)

Related Objects

Event Timeline

Deniz_WMDE created this task.Aug 25 2022, 10:49 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptAug 25 2022, 10:49 AM
Deniz_WMDE updated the task description. (Show Details)Aug 25 2022, 10:51 AM
Deniz_WMDE updated the task description. (Show Details)
Deniz_WMDE updated the task description. (Show Details)
Deniz_WMDE updated the task description. (Show Details)Aug 25 2022, 10:53 AM
Deniz_WMDE updated the task description. (Show Details)Aug 25 2022, 2:36 PM
Deniz_WMDE updated the task description. (Show Details)Aug 25 2022, 2:39 PM
Addshore subscribed.Aug 29 2022, 4:19 PM

@Deniz_WMDE I'd also be interested to know the payload of the response to /mine as it looks both cached and broken? as the wiki names are not displayed.

Evelien_WMDE moved this task from Backlog (incoming) to Product prioritized backlog on the Wikibase Cloud board.Sep 7 2022, 10:01 AM
Evelien_WMDE moved this task from Product prioritized backlog to Backlog (incoming) on the Wikibase Cloud board.Feb 23 2023, 3:02 PM
GreenReaper subscribed.Mar 29 2023, 6:46 PM

FWIW, I have previously started using the dashboard and I think it looked like I was logged in, showing a list of wikis, but when I clicked the settings cog for the desired wikibase I suddenly found I was not.

This seems like a (fairly mild) security issue in the sense that the list of wikis owned by a user is private information and should not be cached beyond the expiry of the login cookie. It could be more important in a work or event situation where multiple people may use the same computer.

Deniz_WMDE added a comment.Aug 15 2023, 3:38 PM

We just noticed that we do not terminate user sessions when logging out, this (or similar session handling) might come into play here https://github.com/wbstack/ui/blob/main/src/store/auth.js#L61

Fring subscribed.Aug 15 2023, 3:48 PM

Related ticket https://phabricator.wikimedia.org/T331423

Deniz_WMDE closed this task as Resolved.Mar 14 2024, 4:36 PM
Deniz_WMDE claimed this task.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL