Fix MSC4108 'rendez-vous' responses with some reverse proxy in the front of Synapse (#18178) - matrix/thirdparty/synapse.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Quentin Gliech <quenting@element.io>	2025-02-25 11:34:33 +0100
committer	GitHub <noreply@github.com>	2025-02-25 11:34:33 +0100
commit	b9276e21eee569c244ef40cab0285fc067dbf702 (patch)
tree	2f0946fba38ccccc4343729d46c64865dc96ff69 /docs/usage/configuration/config_documentation.md
parent	Bump types-psycopg2 from 2.9.21.20241019 to 2.9.21.20250121 (#18188) (diff)
download	synapse-b9276e21eee569c244ef40cab0285fc067dbf702.tar.xz

Fix MSC4108 'rendez-vous' responses with some reverse proxy in the front of Synapse (#18178)

MSC4108 relies on ETag to determine if something has changed on the
rendez-vous channel.
Strong and correct ETag comparison works if the response body is
bit-for-bit identical, which isn't the case if a proxy in the middle
compresses the response on the fly.

This adds a `no-transform` directive to the `Cache-Control` header,
which tells proxies not to transform the response body.

Additionally, some proxies (nginx) will switch to `Transfer-Encoding:
chunked` if it doesn't know the Content-Length of the response, and
'weakening' the ETag if that's the case. I've added `Content-Length`
headers to all responses, to hopefully solve that.

This basically fixes QR-code login when nginx or cloudflare is involved,
with gzip/zstd/deflate compression enabled.

Diffstat (limited to 'docs/usage/configuration/config_documentation.md')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: