mnot
commented
2 months ago Not sure logged in is the right example here -- that's best mirrored in cookie state (and thus Vary -- see eg availability hints here).
But the use case is interesting -- my go-to example here is 'what if we publish something and legal says it has to come down NOW'?
Are you thinking something like a protocol from server to browser, or just a new JS API? In the latter case, sites would need to write the protocol themselves, which means integrating it with CDN purges would potentially not be as seamless.
See also proposals like LCI, which can scale out to browser deployment, at the cost of a modest latency hit for invalidations (e.g., 5-30 secs). Of course, you could also do it with something like SSE.
yoavweiss
CDNs have the notion of "hold-till-told" cache semantics, where resources can have long term cache lifetimes, but can be purged once a certain event happens. (e.g. a typo or a pricing error is discovered)
It seems like such a notion would be useful on the web as well, even if the means of distributing a "purge" signal are different, and essentially client-driven.
One example that comes to mind that frequently changes HTML content is login state. Logged-in users get slightly different experiences compared to their previously-not-yet-logged-in selves on the same URLs.
It seems like it might be beneficial to enable sites to cache their HTML pages, while enabling them to purge them in case e.g. a user logs in.
While more expansive purging capabilities (e.g. the ones proposed in cache groups) can be easier to manage from a site author's perspective, a single URL purge may be significantly easier to implement, and still useful on its own.
/cc @tvereecke @mnot