Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use readfile() for serving protected uploads #26

Merged
merged 6 commits into from
Jun 28, 2024
Merged

Use readfile() for serving protected uploads #26

merged 6 commits into from
Jun 28, 2024

Conversation

leedxw
Copy link
Contributor

@leedxw leedxw commented May 22, 2024

I suspect that one performance problem we have stems from loading binary files into memory, and then using echo() to send them to the client.

This switches off output buffering and uses readfile().

  • Version number has been bumped

@leedxw leedxw requested a review from snim2 May 22, 2024 14:02
@leedxw leedxw force-pushed the feature/readfile branch 4 times, most recently from 6722aaa to a6da13d Compare May 22, 2024 14:20
snim2
snim2 requested changes May 30, 2024
View reviewed changes
Copy link
Contributor

@snim2 snim2 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So, I've tested this locally, and it still serves assets, so I think the change is fine. However, we need to update the Changelog before merging this.

@leedxw
Copy link
Contributor Author

leedxw commented May 30, 2024

You need to update the changelog, version string, git tagged version.

@leedxw leedxw marked this pull request as ready for review June 13, 2024 11:31
@RobjS
Copy link
Contributor

RobjS commented Jun 17, 2024

Do we have a recommended local config for testing this plugin on files in uploads/? By default, requests for files in that directory aren't routed via WordPress auth, so this plugin code doesn't run.

@leedxw
Copy link
Contributor Author

leedxw commented Jun 17, 2024
edited
Loading

Is this for saluki testing?

ENABLE_INTRANET_SETTINGS=true

will force uploads to be delivered via index.php - it's commented out in /.env.test

@RobjS
Copy link
Contributor

RobjS commented Jun 17, 2024

No, this is for local testing using our thedxw/wpc-wordpress image

@leedxw leedxw requested a review from snim2 June 26, 2024 17:00
@snim2
Copy link
Contributor

snim2 commented Jun 28, 2024

We've merged other things since this was raised so the version number needs to be checked

RobjS
RobjS reviewed Jun 28, 2024
View reviewed changes
Copy link
Contributor

@RobjS RobjS left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I've tested this locally with Saluki and it's working, just needs version number updating.

snim2
snim2 reviewed Jun 28, 2024
View reviewed changes
readme.txt Outdated
- Where to redirect visitors who are not logged in and try to view restricted content
- Whether to automatically restrict access to uploads by default
- A max age for the cache-control header that will be served to any users who try to access restricted content when not logged in

== Development ==

https://github.com/dxw/dxw-members-only

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@RobjS there are two README files in this plugin and this one is not displayed by default in GitHub. I'm inclined to delete it. wdyt?

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, I think this is an artifact of when we published the plugin on the WordPress directory, but that's not the case in anymore, so happy to delete.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If it's a WordPress plugin it should be using the Wordpress plugin conventions regardless of if it's published imo.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think, for example, plugins that display changelogs expect them to be in readme.txt

leedxw and others added 6 commits June 28, 2024 15:17
@leedxw @snim2
Use readfile() for serving protected uploads
716e4a0 
I suspect that one performance problem we have stems from loading
binary files into memory, and then using `echo()` to send them to
the client.

This switches off output buffering and uses `readfile()`.
@leedxw @snim2
Disable output buffering in FastCGI / nginx
f768e43 
This header, if recieved by nginx, applies the following:

```
gzip off;
fastcgi_buffering off;
```

(The header is not passed to the client.)
@leedxw @snim2
Update readme.txt changelog
5664364 
https://wordpress.org/plugins/readme.txt
https://developer.wordpress.org/plugins/wordpress-org/how-your-readme-txt-works/
@leedxw @snim2
Range: should not be attempted for protected files
35158eb
@snim2
Bump version to 4.3.0
960ab22
@snim2
Delete unused readme.txt
f52d008 
This repository has two readme files, this is the one
that is not displayed in GitHub. The information in
the files is duplicated so we can just remove this.
@leedxw leedxw merged commit b3160e3 into master Jun 28, 2024
3 checks passed
@snim2 snim2 deleted the feature/readfile branch June 28, 2024 16:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@RobjS RobjS RobjS left review comments

@snim2 snim2 snim2 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@leedxw @RobjS @snim2