danielcweeks commented on PR #15171: URL: https://github.com/apache/iceberg/pull/15171#issuecomment-3999765595
> the headers we know are fluid/irrelevant have already been stripped out before submission to the rest signing service I don't agree with this. We're putting to much of the logic into the client and we should delegate the responsibility to the catalog. The `Cache-Control` header should be used by the catalog to single what it what the client can reuse or not. I think we should only sign for the minimal necessary and if there are security concerns with a specific request, the catalog should indicate that through the cache control header which would allow it to include things that are specific to the request. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
