On Mon, 12 Jan 2004, Konrad wrote: > 1) Does squid with ESI support Basic Authorization? becouse I always get > TCP_MISS/200
Squid generally does not cache authenticated content due to security restrictions of such content outlined by the HTTP specifications. In normal proxies this is what you want in order to not risk sensitive information leakage between users, but in an accelerator it may or may not be what is wanted all depending on the nature of the content. To get authenticated content cached in a shared cache in must be classified as public information by "Cache-Control: public". This tells caches that it is safe to cache the content even if the request was authenticated. There is a quite lengthy discussion on this in the HTTP specifications if your want to read more on the subject. Regards Henrik
