Jan Lehnardt
Jan Lehnardt
@thigg are you planning to submit a PR here?
I’ve attempted a quick demo that caches the transpilation inside the JS process, this would still do one transpile per couchjs process, but should still be a lot better. @konrad-ohms...
@konrad-ohms thank you for confirming this, we’ll see about getting this into 3.x ✌️
@konrad-ohms would you be able to once more test this PR: https://github.com/apache/couchdb/pull/3728 — it uses SHA-256 over crc32, and thus is production ready, we just wanna make sure this still...
Thanks for the update! We expected a reduction in performance, but this is quite a jump. Maybe we can think about making this configurable, most folks only ever run trusted...
I’d be happy to bike shed this to make it its own config variable `cookie_secure = bool` and folks who want both can set both, this was the least effort...
This might still be useful for scenarios where folks are behind proxies where they can’t add the Secure flag to the `Set-Cookie` header dynamically, and if they don’t want to...
> With the discussion to move ChakraCore into the system, do we really want to bother with continuing to support a query server protocol at all? I'm not so sure....
what about auth proxies? the token is a part of our documented public API
that would be an option, but you’d want admins to disable the sha1 check completely still, so I’m not sure we can get around a config option