An RFC compliant and ESI capable HTTP cache for Nginx / OpenResty, backed by Redis
Cookie
or Authorization
headers to ESI requests on another domain, unless explicitly added in manually using the before_esi_include_request
event.server_addr
and server_port
even if the scheme was different. We now check the scheme matches too before making this optimisation.esi_attempt_loopback
.Fix request leak with upstream sockets when downstream sockets are prematurely aborted.
Fix crash with multiple Date response headers
Fixes some issues around SSRF and XSS exploits when using ESI variables
Bugfix: On cache read if the current key is missing from the repset (e.g. evicted) re-add it. An evicted or incomplete repset causes incomplete or failed purging.