Page MenuHomePhabricator
Create Task
Maniphest T417825

CDN: include x-is-browser in all requests to the backend
Closed, ResolvedPublic
Actions

Description

The CDN's Backend API will currently include the x-is-browser header only for trust level E or lower. It would be useful for the REST gateway to get the is-browser score also for authenticated requests (level C), to distinguish between logged-in browser traffic and other logged-in traffic (authenticated bots).

For consistency, it would be nice to also include the x-is-browser header for requests with trust levels A, B, and D, but with a fixed value of 0, since these trust levels explicitly refer to bots.

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
cache::haproxy: calculate X-I-B for C and Eoperations/puppetproduction+10 -8
Customize query in gerrit

Related Objects
Search...

Event Timeline

daniel created this task.Feb 18 2026, 7:57 PM
daniel moved this task from Incoming (Needs Triage) to Radar (other teams work) on the MW-Interfaces-Team board.
daniel triaged this task as High priority.Feb 18 2026, 7:59 PM
Vgutierrez claimed this task.Feb 19 2026, 12:24 PM
MShilova_WMF subscribed.Feb 24 2026, 7:13 PM
MShilova_WMF added a comment.Feb 26 2026, 3:25 PM

@Vgutierrez , this is part of the API rate limiting rollout prep, and we’re trying to confirm whether everything needed for the March 9 phase is on track.

Do you have a sense of current status and expected timeline for this change? Let me know if there’s anything we should be aware of or help unblock.

gerritbot added a comment.Mar 2 2026, 11:04 AM

Change #1247027 had a related patch set uploaded (by Vgutierrez; author: Vgutierrez):

[operations/puppet@production] cache::haproxy: calculate X-I-B for C and E

https://gerrit.wikimedia.org/r/1247027

gerritbot added a project: Patch-For-Review.Mar 2 2026, 11:04 AM
gerritbot added a comment.Mar 2 2026, 1:49 PM

Change #1247027 merged by Vgutierrez:

[operations/puppet@production] cache::haproxy: calculate X-I-B for C and E

https://gerrit.wikimedia.org/r/1247027

Vgutierrez closed this task as Resolved.Mar 2 2026, 1:59 PM
In T417825#11655005, @MShilova_WMF wrote:

@Vgutierrez , this is part of the API rate limiting rollout prep, and we’re trying to confirm whether everything needed for the March 9 phase is on track.

Do you have a sense of current status and expected timeline for this change? Let me know if there’s anything we should be aware of or help unblock.

task has been completed and change should be live in ~30 minutes as soon as puppet applies the changes fleet wide

Maintenance_bot removed a project: Patch-For-Review.Mar 2 2026, 2:32 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits