I encountered a problem today: NGINX cached administrator permission information
For the convenience of operation, I put some hype permissions on the page today, so that it is very convenient for me to operate. I feel very smart. After all, this saves time.
However, I accidentally discovered today that I am not logged in with my administrator account, but there are many operation buttons on the page that require administrator login to be seen. My first thought is that I must not have made a judgment, or a certain judgment was not very good. After writing the conditions, I searched for the code for a long time and found that it has been controlled by the Session of java jsp. So where is the problem?
After searching for a while, no problem was found, and there was no problem with my local test account, so it was obvious that this was a problem on the server. The only difference between the server and my local machine is that I used nginx to add a cache to Local functionality.
This is the following command: proxy_cache_path /home/nginx/cache levels=1:2 keys_zone=my_cache:10m max_size=10g inactive=60m use_temp_path=off;
This command plus other cache instructions means that the cache that meets the conditions is cached on the local hard disk. As long as the administrator is the first to view it, the cache must have operation information corresponding to the administrator's permissions. Therefore, if you find the problem, the withdrawal should not be done by the client. Just click on the operation information that appears on the terminal page.
I encountered a problem today: NGINX cached administrator permission information