seadowg
commented
1 month ago To add some more context to the CloudFlare setup: I use CloudFlare as the DNS provider for the domain I have Central running at. Central is running on Digital Ocean Droplet (in the documented Docker compose setup) and then I have an A record in CloudFlare pointing towards the Droplet public IP address. I imagine the source of the problem here is that I used CloudFlare's "Proxied" feature on the DNS record. This means:
When you proxy specific DNS records through Cloudflare - specifically A, AAAA, or CNAME records — DNS queries for these will resolve to Cloudflare Anycast IPs instead of their original DNS target. This means that all requests intended for proxied hostnames will go to Cloudflare first and then be forwarded to your origin server.
This behavior allows Cloudflare to optimize, cache, and protect all requests to your application, as well as protect your origin server from DDoS attacks.
Problem description
@seadowg ended up in a state where Enketo preview and a Collect App User were seeing different numbers of entities. He looked at his server logs and noticed that the entity lists were not actually being requested. It turned out he was getting cached lists returned from Cloudflare. Because Enekto preview and Collect App User links access the same resource through different URLs, they were being cached separately.
Steps to reproduce the problem
Set up a Digital Ocean server and add Cloudflare with default settings. @seadowg may add more details to this!
Expected behavior
Cached Entity Lists should only be returned when unchanged. Any change to the upstream resource should bust all caching layers.
Central version shown in version.txt
Other notes (if any)
Form definitions aren't being cached in this way. A possible useful next step would be to compare headers for form XML vs entity list CSVs.
If there's nothing obviously wrong, let's deprioritize until we get more reports of issues in this area.