Fix #609 - Implements HTTP Caching for HTML routes

[karlcow]

This currently doesn't fix all HTML resources served on our site, but just the issue view.
I would love to get it on staging, because of our nginx layer and see how it flies. Locally, things seem to go well.

→ nosetests -v

API access to comments greater than 30 returns pagination in Link ... ok
API issue for a non existent number returns JSON 404. ... ok
API issue search with bad keywords returns JSON 404. ... ok
API access to labels without auth returns JSON 200. ... ok
API with wrong parameter returns JSON 404. ... ok
API setting labels without auth returns JSON 403 error code. ... ok
API access to user activity without auth returns JSON 401. ... ok
API with wrong category returns JSON 404. ... ok
API with wrong route returns JSON 404. ... ok
test_domain_name (tests.test_form.TestForm) ... ok
Make sure wrap_metadata and get_metadata methods work. ... ok
test_normalize_url (tests.test_form.TestForm) ... ok
Test HTTP Links formating. ... ok
Test browser parsing via get_browser helper method. ... ok
Test browser name parsing via get_browser_name helper method. ... ok
Test OS parsing via get_os helper method. ... ok
Test that API params are correctly converted to Search API. ... ok
normalize_api_params shouldn't transform unknown params. ... ok
Test HTTP Links parsing for GitHub only. ... ok
test_rewrite_and_sanitize_link (tests.test_helpers.TestHelpers) ... ok
Test we're correctly rewriting the passed in link. ... ok
Test that we're removing access_token parameters. ... ok
Check Cache-Control for issues. ... ok
Check ETAG for issues. ... ok
Check if we receive a 304 Not Modified. ... ok
testBase64ScreenshotUploads (tests.test_uploads.TestUploads) ... ok
Test that /upload/ doesn't let you GET. ... ok
testRegularUploads (tests.test_uploads.TestUploads) ... ok
Test that /about exists. ... ok
Test that asks user to log in before displaying activity. ... ok
Test that the home page exists. ... ok
Test issues and integer for: ... ok
Test that the /issues/<number> exists, and does not redirect. ... ok
Test that the /issues route gets 200 and does not redirect. ... ok
Webhook related tests. ... ok
Test that the /login route 302s to GitHub. ... ok
Test that /issues/new exists. ... ok
Test that /privacy exists. ... ok
Rate Limit URI sends 200 OK and starts with Current user. ... ok
Test that the /tools/cssfixme route gets 200. ... ok
Test that the /tools/cssfixme route gets 200 with ?url query. ... ok
Test that the /tools/cssfixme route gets 200 with bad ?url query. ... ok

----------------------------------------------------------------------
Ran 42 tests in 9.196s

OK

And on the CLI.

First request:

→ http --print Hh GET http://localhost:5000/issues/100 

GET /issues/100 HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
Connection: keep-alive
Host: localhost:5000
User-Agent: HTTPie/0.9.3

The 1st response

HTTP/1.0 200 OK
Cache-Control: private, max-age=31536000
Content-Length: 9366
Content-Type: text/html; charset=utf-8
Date: Thu, 09 Feb 2017 04:46:16 GMT
ETag: "bce46f17692195b267de8026b3c5f66f"
Server: Werkzeug/0.10.4 Python/2.7.10

Then the second request with If-None-Match

→ http --print Hhb GET http://localhost:5000/issues/100 'If-None-Match:"bce46f17692195b267de8026b3c5f66f"'

GET /issues/100 HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
Connection: keep-alive
Host: localhost:5000
If-None-Match: "bce46f17692195b267de8026b3c5f66f"
User-Agent: HTTPie/0.9.3

with the second response:

HTTP/1.0 304 NOT MODIFIED
Cache-Control: private, max-age=31536000
Connection: close
Date: Thu, 09 Feb 2017 04:46:56 GMT
ETag: "bce46f17692195b267de8026b3c5f66f"
Server: Werkzeug/0.10.4 Python/2.7.10

[karlcow]

ok let's ask
r? @miketaylr
for a preliminary review.

[miketaylr]

Let me deploy this to staging so you can play around with it. I won't have time for review until tomorrow.

[miketaylr]

🍪 for new tests!

[miketaylr]

@karlcow deployed to staging.

[karlcow]

Thanks @miketaylr

https://staging.webcompat.com/issues/515

HTTP/1.1 200 OK
Server: nginx/1.1.19
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: private, max-age=31536000
Etag: "f9530168e98a2537ad066564ef2f38e5"
Date: Fri, 10 Feb 2017 01:09:30 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
Content-Encoding: gzip

Click reload

Request

GET /issues/515 HTTP/1.1
Host: staging.webcompat.com
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:54.0) Gecko/20100101 Firefox/54.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://staging.webcompat.com/
Cookie: session=****; _ga=GA1.2.1918118046.1486688948; _gat=1
Authorization: Basic czpz
Connection: keep-alive
Upgrade-Insecure-Requests: 1
If-None-Match: "f9530168e98a2537ad066564ef2f38e5"
Cache-Control: max-age=0

Response

HTTP/1.1 304 NOT MODIFIED
Server: nginx/1.1.19
Connection: keep-alive
Cache-Control: private, max-age=31536000
Etag: "f9530168e98a2537ad066564ef2f38e5"
Date: Fri, 10 Feb 2017 01:12:03 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY

So this is working as expected. \o/

[karlcow]

I'm changing a bit the strategy to have more flexbility for other resources/routes.

I created a decorator defining the cache_policy
It also means that in the future we will be able to play a bit more with it and do fine tuning.

The routes without caching

• /
• /issues
• /issues/nnnn DONE.
• /about
• /privacy
• /contributors
• /me
• /activity/karlcow

[karlcow]

Don't review yet :)

[miketaylr]

Don't review yet :)

Deal!

[karlcow]

→ nosetests -v
/Users/karl/.virtualenvs/webcompatcom/lib/python2.7/site-packages/flask_limiter/extension.py:124: UserWarning: Use of the default `get_ipaddr` function is discouraged. Please refer to https://flask-limiter.readthedocs.org/#rate-limit-domain for the recommended configuration
  UserWarning
API access to comments greater than 30 returns pagination in Link ... ok
API issue for a non existent number returns JSON 404. ... ok
API issue search with bad keywords returns JSON 404. ... ok
API access to labels without auth returns JSON 200. ... ok
API with wrong parameter returns JSON 404. ... ok
API setting labels without auth returns JSON 403 error code. ... ok
API access to user activity without auth returns JSON 401. ... ok
API with wrong category returns JSON 404. ... ok
API with wrong route returns JSON 404. ... ok
test_domain_name (tests.test_form.TestForm) ... ok
Make sure wrap_metadata and get_metadata methods work. ... ok
test_normalize_url (tests.test_form.TestForm) ... ok
Test HTTP Links formating. ... ok
Test browser parsing via get_browser helper method. ... ok
Test browser name parsing via get_browser_name helper method. ... ok
Test OS parsing via get_os helper method. ... ok
Test that API params are correctly converted to Search API. ... ok
normalize_api_params shouldn't transform unknown params. ... ok
Test HTTP Links parsing for GitHub only. ... ok
test_rewrite_and_sanitize_link (tests.test_helpers.TestHelpers) ... ok
Test we're correctly rewriting the passed in link. ... ok
Test that we're removing access_token parameters. ... ok
Check Cache-Control for issues. ... ok
Check ETAG for issues. ... ok
Checks if we receive a 304 Not Modified. ... ok
testBase64ScreenshotUploads (tests.test_uploads.TestUploads) ... ok
Test that /upload/ doesn't let you GET. ... ok
testRegularUploads (tests.test_uploads.TestUploads) ... ok
Test that /about exists. ... ok
Test that asks user to log in before displaying activity. ... ok
Test that the home page exists. ... ok
Test issues and integer for: ... ok
Test that the /issues/<number> exists, and does not redirect. ... ok
Test that the /issues route gets 200 and does not redirect. ... ok
Webhook related tests. ... ok
Test that the /login route 302s to GitHub. ... ok
Test that /issues/new exists. ... ok
Test that /privacy exists. ... ok
Rate Limit URI sends 200 OK and starts with Current user. ... ok
Test that the /tools/cssfixme route gets 200. ... ok
Test that the /tools/cssfixme route gets 200 with ?url query. ... ok
Test that the /tools/cssfixme route gets 200 with bad ?url query. ... ok

----------------------------------------------------------------------
Ran 42 tests in 6.190s

OK

Let's start a formal review r? @miketaylr

[miketaylr]

Looks good!

One or two minor nits that are up to you, but it would be good to add the requested comments.

One other thing: can you clean up the history here? 17 commits is a bit much for what we're adding.

For example, all the test commits could be squashed into a single "tests for http caching" commit. And there's a few commits that add an idea (8cc5446) (512a68c), then remove that idea (47f18dc), etc.

A commit style like that is GOOD for development, but we can just land the working loaf of bread that you baked, rather than the breadcrumbs (if that makes sense, it's a terrible metaphor).

[karlcow]

@miketaylr Ok I squashed everything into one commit. :) because rebasing with intertwined modifications was probably not a good idea. If you prefer I can submit separate commits for testing, decorator and views in a new branch. ^_^ No issue.

[miketaylr]

@miketaylr Ok I squashed everything into one commit. :) because rebasing with intertwined modifications was probably not a good idea. If you prefer I can submit separate commits for testing, decorator and views in a new branch. ^_^ No issue.

That's fine too. Doing gigantic interactive rebases can easily get weird.

[miketaylr]

r=me, assuming you'll make the uri_max_age=86400 default change. Feel free to merge and add the "add to changelog" label after that -- thanks!

[karlcow]

r=me, assuming you'll make the uri_max_age=86400 default change. Feel free to merge and add the "add to changelog" label after that -- thanks!

It was done no? So assuming that @miketaylr had missed the change
https://github.com/webcompat/webcompat.com/pull/1335/files/bab6f6df1676b65f891ace94527d4596f176dcbf#diff-23e0a36bbee957147173901eb77913cbR463

I'll move forward.

Thanks for the review! Very helpful.

[miketaylr]

It was done no? So assuming that @miketaylr had missed the change

I wasn't even looking -- I assumed you would merge it after you made the change. 😄

Happy this landed!