🧹 chore: Improve cache middleware RFC compliance (#3488)

gaby · web-flow · commit a779888d4446 · 2025-05-28T13:59:06.000+02:00
* test: cover cache enhancements

* Fix lint issues and tests names

* Fix test

* Use utils.ToLower()

* Use utils.Trim

* Add missing param
diff --git a/docs/whats_new.md b/docs/whats_new.md
@@ -977,6 +977,7 @@ The BasicAuth middleware was updated for improved robustness in parsing the Auth
 
 We are excited to introduce a new option in our caching middleware: Cache Invalidator. This feature provides greater control over cache management, allowing you to define a custom conditions for invalidating cache entries.
 Additionally, the caching middleware has been optimized to avoid caching non-cacheable status codes, as defined by the [HTTP standards](https://datatracker.ietf.org/doc/html/rfc7231#section-6.1). This improvement enhances cache accuracy and reduces unnecessary cache storage usage.
+Cached responses now include an RFC-compliant Age header, providing a standardized indication of how long a response has been stored in cache since it was originally generated. This enhancement improves HTTP compliance and facilitates better client-side caching strategies.
 
 ### CORS
 
diff --git a/middleware/cache/cache.go b/middleware/cache/cache.go
@@ -162,14 +162,23 @@ func New(config ...Config) fiber.Handler {
 				for k, v := range e.headers {
 					c.Response().Header.SetBytesV(k, v)
 				}
-				// Set Cache-Control header if enabled
-				if cfg.CacheControl {
+				// Set Cache-Control header if enabled and not already set
+				if cfg.CacheControl && len(c.Response().Header.Peek(fiber.HeaderCacheControl)) == 0 {
 					maxAge := strconv.FormatUint(e.exp-ts, 10)
 					c.Set(fiber.HeaderCacheControl, "public, max-age="+maxAge)
 				}
 
+				// RFC-compliant Age header
+				age := strconv.FormatUint(e.ttl-(e.exp-ts), 10)
+				c.Response().Header.Set(fiber.HeaderAge, age)
+
 				c.Set(cfg.CacheHeader, cacheHit)
 
+				// release item allocated from storage
+				if cfg.Storage != nil {
+					manager.release(e)
+				}
+
 				mux.Unlock()
 
 				// Return response
@@ -185,6 +194,12 @@ func New(config ...Config) fiber.Handler {
 			return err
 		}
 
+		// Respect server cache-control: no-store
+		if strings.Contains(utils.ToLower(string(c.Response().Header.Peek(fiber.HeaderCacheControl))), noStore) {
+			c.Set(cfg.CacheHeader, cacheUnreachable)
+			return nil
+		}
+
 		// Don't cache response if status code is not cacheable
 		if !cacheableStatusCodes[c.Response().StatusCode()] {
 			c.Set(cfg.CacheHeader, cacheUnreachable)
@@ -224,6 +239,10 @@ func New(config ...Config) fiber.Handler {
 		e.ctype = utils.CopyBytes(c.Response().Header.ContentType())
 		e.cencoding = utils.CopyBytes(c.Response().Header.Peek(fiber.HeaderContentEncoding))
 
+		if len(c.Response().Header.Peek(fiber.HeaderAge)) == 0 {
+			c.Response().Header.Set(fiber.HeaderAge, "0")
+		}
+
 		// Store all response headers
 		// (more: https://datatracker.ietf.org/doc/html/rfc2616#section-13.5.1)
 		if cfg.StoreResponseHeaders {
@@ -241,11 +260,15 @@ func New(config ...Config) fiber.Handler {
 
 		// default cache expiration
 		expiration := cfg.Expiration
+		if v, ok := parseMaxAge(string(c.Response().Header.Peek(fiber.HeaderCacheControl))); ok {
+			expiration = v
+		}
 		// Calculate expiration by response header or other setting
 		if cfg.ExpirationGenerator != nil {
 			expiration = cfg.ExpirationGenerator(c, &cfg)
 		}
 		e.exp = ts + uint64(expiration.Seconds())
+		e.ttl = uint64(expiration.Seconds())
 
 		// Store entry in heap
 		if cfg.MaxBytes > 0 {
@@ -276,3 +299,16 @@ func New(config ...Config) fiber.Handler {
 func hasRequestDirective(c fiber.Ctx, directive string) bool {
 	return strings.Contains(c.Get(fiber.HeaderCacheControl), directive)
 }
+
+// parseMaxAge extracts the max-age directive from a Cache-Control header.
+func parseMaxAge(cc string) (time.Duration, bool) {
+	for _, part := range strings.Split(cc, ",") {
+		part = utils.Trim(utils.ToLower(part), ' ')
+		if strings.HasPrefix(part, "max-age=") {
+			if sec, err := strconv.Atoi(strings.TrimPrefix(part, "max-age=")); err == nil {
+				return time.Duration(sec) * time.Second, true
+			}
+		}
+	}
+	return 0, false
+}
diff --git a/middleware/cache/cache_test.go b/middleware/cache/cache_test.go
@@ -999,6 +999,111 @@ func Test_Cache_UncacheableStatusCodes(t *testing.T) {
 	}
 }
 
+func TestCacheAgeHeader(t *testing.T) {
+	t.Parallel()
+	app := fiber.New()
+	app.Use(New(Config{Expiration: 10 * time.Second}))
+	app.Get("/", func(c fiber.Ctx) error { return c.SendString("ok") })
+
+	resp, err := app.Test(httptest.NewRequest(fiber.MethodGet, "/", nil))
+	require.NoError(t, err)
+	require.Equal(t, "0", resp.Header.Get(fiber.HeaderAge))
+
+	time.Sleep(4 * time.Second)
+
+	resp, err = app.Test(httptest.NewRequest(fiber.MethodGet, "/", nil))
+	require.NoError(t, err)
+	require.Equal(t, cacheHit, resp.Header.Get("X-Cache"))
+	age, err := strconv.Atoi(resp.Header.Get(fiber.HeaderAge))
+	require.NoError(t, err)
+	require.Positive(t, age)
+}
+
+func Test_CacheNoStoreDirective(t *testing.T) {
+	t.Parallel()
+	app := fiber.New()
+	app.Use(New())
+	app.Get("/", func(c fiber.Ctx) error {
+		c.Set(fiber.HeaderCacheControl, "no-store")
+		return c.SendString("ok")
+	})
+
+	resp, err := app.Test(httptest.NewRequest(fiber.MethodGet, "/", nil))
+	require.NoError(t, err)
+	require.Equal(t, cacheUnreachable, resp.Header.Get("X-Cache"))
+
+	resp, err = app.Test(httptest.NewRequest(fiber.MethodGet, "/", nil))
+	require.NoError(t, err)
+	require.Equal(t, cacheUnreachable, resp.Header.Get("X-Cache"))
+}
+
+func Test_CacheControlNotOverwritten(t *testing.T) {
+	t.Parallel()
+	app := fiber.New()
+	app.Use(New(Config{CacheControl: true, Expiration: 10 * time.Second, StoreResponseHeaders: true}))
+	app.Get("/", func(c fiber.Ctx) error {
+		c.Set(fiber.HeaderCacheControl, "private")
+		return c.SendString("ok")
+	})
+
+	_, err := app.Test(httptest.NewRequest(fiber.MethodGet, "/", nil))
+	require.NoError(t, err)
+
+	resp, err := app.Test(httptest.NewRequest(fiber.MethodGet, "/", nil))
+	require.NoError(t, err)
+	require.Equal(t, "private", resp.Header.Get(fiber.HeaderCacheControl))
+}
+
+func Test_CacheMaxAgeDirective(t *testing.T) {
+	t.Parallel()
+	app := fiber.New()
+	app.Use(New(Config{Expiration: 10 * time.Second}))
+	app.Get("/", func(c fiber.Ctx) error {
+		c.Set(fiber.HeaderCacheControl, "max-age=1")
+		return c.SendString("1")
+	})
+
+	_, err := app.Test(httptest.NewRequest(fiber.MethodGet, "/", nil))
+	require.NoError(t, err)
+
+	time.Sleep(1500 * time.Millisecond)
+
+	resp, err := app.Test(httptest.NewRequest(fiber.MethodGet, "/", nil))
+	require.NoError(t, err)
+	require.Equal(t, cacheMiss, resp.Header.Get("X-Cache"))
+}
+
+func Test_ParseMaxAge(t *testing.T) {
+	t.Parallel()
+	tests := []struct {
+		header string
+		expect time.Duration
+		ok     bool
+	}{
+		{"max-age=60", 60 * time.Second, true},
+		{"public, max-age=86400", 86400 * time.Second, true},
+		{"no-store", 0, false},
+		{"max-age=invalid", 0, false},
+		{"public, s-maxage=100, max-age=50", 50 * time.Second, true},
+		{"MAX-AGE=20", 20 * time.Second, true},
+		{"public , max-age=0", 0, true},
+		{"public , max-age", 0, false},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.header, func(t *testing.T) {
+			t.Parallel()
+			d, ok := parseMaxAge(tt.header)
+			if tt.ok != ok {
+				t.Fatalf("expected ok=%v got %v", tt.ok, ok)
+			}
+			if ok && d != tt.expect {
+				t.Fatalf("expected %v got %v", tt.expect, d)
+			}
+		})
+	}
+}
+
 // go test -v -run=^$ -bench=Benchmark_Cache -benchmem -count=4
 func Benchmark_Cache(b *testing.B) {
 	app := fiber.New()
diff --git a/middleware/cache/manager.go b/middleware/cache/manager.go
@@ -18,6 +18,7 @@ type item struct {
 	cencoding []byte
 	status    int
 	exp       uint64
+	ttl       uint64
 	// used for finding the item in an indexed heap
 	heapidx int
 }
@@ -55,8 +56,8 @@ func (m *manager) acquire() *item {
 
 // release and reset *entry to sync.Pool
 func (m *manager) release(e *item) {
-	// don't release item if we using memory storage
-	if m.storage != nil {
+	// don't release item if we using in-memory storage
+	if m.storage == nil {
 		return
 	}
 	e.body = nil
@@ -69,24 +70,26 @@ func (m *manager) release(e *item) {
 
 // get data from storage or memory
 func (m *manager) get(key string) *item {
-	var it *item
 	if m.storage != nil {
-		it = m.acquire()
 		raw, err := m.storage.Get(key)
-		if err != nil {
-			return it
+		if err != nil || raw == nil {
+			return nil
 		}
-		if raw != nil {
-			if _, err := it.UnmarshalMsg(raw); err != nil {
-				return it
-			}
+
+		it := m.acquire()
+		if _, err := it.UnmarshalMsg(raw); err != nil {
+			m.release(it)
+			return nil
 		}
+
 		return it
 	}
-	if it, _ = m.memory.Get(key).(*item); it == nil { //nolint:errcheck // We store nothing else in the pool
-		return nil
+
+	if it, _ := m.memory.Get(key).(*item); it != nil { //nolint:errcheck // We store nothing else in the pool
+		return it
 	}
-	return it
+
+	return nil
 }
 
 // get raw data from storage or memory
