Page MenuHomePhabricator
Create Task
Maniphest T274724

Add support for "Max-Age" to WebResponse::setCookie (more reliable than "Expires")
Open, Needs TriagePublic
Actions

Description

We currently set the Expires attribute when sending cookies to clients. This has the downside of being an absolute timestamp, and thus places unnecessary importance on client devices being in sync with our datacenter clocks.

Cookies that are short-lived or otherwise time-sensitive, thus have have a significant chance of lasting too long, or expiring too soon.

For example, the short-lived cookies for Wikimedia-Rdbms' ChronologyProtector and Multi-DC (T91816, T91820) are meant to last approximately 10 seconds, to allow for cross-dc replication to take place during which the client remains "sticky" to the primary DC.

If the client device clock is ahead by even a few seconds, they will end up ignoring this cookie (as seemingly expired on arrival), and switch themselves back to secondary DCs before this process is finished. Conversely, if their clock is behind the cookie will needlessly impact their performance by remaining connected to the primary DC for longer than needed, as well as to keep instructing MediaWiki to look for ChronologyProtector positions that no longer exist (which then issues a warning in Logstash).

This isn't super bad per-se, but we can certainly do much better, by using the "Max-Age" attribute (which supplies the number of seconds a cookie is meant to last, to be interpreted by browsers). This is a progressive enhancement that old browsers simply ignore. It is currently supported by all major browsers (Firefox 85 , Safari 14 , iOS 14 , Chrome 88 , Edge, IE11 ).

See:

Related Objects

Event Timeline

Krinkle created this task.Feb 14 2021, 6:38 AM
Restricted Application added a project: Platform Engineering. · View Herald TranscriptFeb 14 2021, 6:38 AM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
Krinkle renamed this task from Use to Add support for "Max-Age" to WebResponse::setCookie (more reliable than "Expires").Feb 14 2021, 7:03 AM
Krinkle edited projects, added Sustainability (MediaWiki-MultiDC); removed Platform Engineering.
Krinkle updated the task description. (Show Details)
Krinkle added a project: Performance-Team (Radar).
Krinkle moved this task from Limbo to Perf recommendation on the Performance-Team (Radar) board.
Krinkle mentioned this in T289538: PostEdit message often not showing ("Cookie has been rejected because it is already expired").Aug 26 2021, 1:42 AM
Krinkle added a comment.Aug 30 2021, 5:52 PM

Before we upgraded to PHP 5.5 and HHVM, PHP setcookie() as used by MediaWiki always created Set-Cookie headers containing only the Expires attribute.

Starting in PHP 5.5, it also emits the Max-Age attribute. For example:

Set-Cookie: userlang=en; expires=Fri, 11-Nov-2016 21:30:51 GMT; Max-Age=2592000; path=/

Upstream tests:
https://github.com/php/php-src/blob/5b01c4863fe9e4bc2702b2bbf66d292d23001a18/ext/standard/tests/network/setcookie.phpt#L12-L29

Krinkle moved this task from Untriaged to Rdbms library on the MediaWiki-libs-Rdbms board.Oct 16 2021, 1:37 AM
Krinkle updated the task description. (Show Details)
Krinkle moved this task from Perf recommendation to Watching on the Performance-Team (Radar) board.Oct 3 2022, 9:23 PM
Ciencia_Al_Poder subscribed.Jun 5 2023, 9:21 PM
Krinkle moved this task from Watching to Perf recommendation on the Performance-Team (Radar) board.Aug 6 2023, 10:41 PM
Krinkle edited projects, added Wikimedia-Performance-recommendation; removed Performance-Team (Radar).Aug 18 2023, 8:41 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits