Add logging and proxy info; dont cache 400/500

Author: switz

nginx.conf

@@ -9,7 +9,17 @@ events {
 
 http {
     #include       mime.types;
-    access_log /dev/stdout;
+
+    # Define custom log format including upstream information
+    log_format upstream '$remote_addr - $remote_user [$time_local] '
+                       '"$request" $status $body_bytes_sent '
+                       '"$http_referer" "$http_user_agent" '
+                       'upstream_addr=$upstream_addr '
+                       'upstream_status=$upstream_status '
+                       'upstream_response_time=$upstream_response_time '
+                       'request_time=$request_time';
+
+    access_log /dev/stdout upstream;
     default_type    application/octet-stream;
     sendfile        on;
 
@@ -19,6 +29,18 @@ http {
 
     # proxy_cache_path  /data/nginx/cache  levels=1:2    keys_zone=STATIC:10m inactive=365d  max_size=256g use_temp_path=off;
 
+    # Map to determine if we should store the response based on status code
+    map $upstream_status $store_response {
+        ~^[45] off;  # Don't store 4xx or 5xx responses
+        default /data/nginx/$original_uri;  # Store all other responses
+    }
+
+    # Map to determine cache control headers based on status code
+    map $upstream_status $cache_control {
+        ~^[45] "no-cache, no-store, must-revalidate";  # Don't cache errors
+        default "public, max-age=31536000, immutable";  # Cache successful responses
+    }
+
     server {
         root /data/nginx/;
         listen       80;
@@ -28,7 +50,7 @@ http {
         sendfile_max_chunk 1m;
         tcp_nopush on;
         tcp_nodelay       on;
-        keepalive_timeout 65;        
+        keepalive_timeout 65;
         autoindex on;
         etag on;
 
@@ -42,7 +64,7 @@ http {
         proxy_hide_header CF-RAY;
         proxy_hide_header X-DNS-Prefetch-Control;
         # end
-    
+
 
         # add header to understand caching behavior
         add_header X-Relisten-Audio-Cache $upstream_cache_status;
@@ -67,32 +89,41 @@ http {
 
             set $original_uri '$uri';
 
+            # If the file exists, serve it with caching headers; otherwise, proxy to archive.org.
+            try_files $uri @fetch_archive;
+
+            # For files served from disk (not proxied), set cache headers
             expires max;
             add_header Cache-Control "public, max-age=31536000, immutable";
-            # If the file exists, serve it; otherwise, proxy to archive.org.
-            try_files $uri @fetch_archive;
+            add_header X-Relisten-Proxy-Status "cached" always;
         }
 
         location ^~ /phish.in/.*\.mp3 {
             # include cors.conf;
 
             set $original_uri '$uri';
 
+            # If the file exists, serve it with caching headers; otherwise, proxy to phish.in.
+            try_files $uri @fetch_phishin;
+
+            # For files served from disk (not proxied), set cache headers
             expires max;
             add_header Cache-Control "public, max-age=31536000, immutable";
-            # If the file exists, serve it; otherwise, proxy to archive.org.
-            try_files $uri @fetch_phishin;
+            add_header X-Relisten-Proxy-Status "cached" always;
         }
 
         location ^~ /www.panicstream.com/.*\.mp3 {
             # include cors.conf;
 
             set $original_uri '$uri';
 
+            # If the file exists, serve it with caching headers; otherwise, proxy to panicstream.
+            try_files $uri @fetch_panicstream;
+
+            # For files served from disk (not proxied), set cache headers
             expires max;
             add_header Cache-Control "public, max-age=31536000, immutable";
-            # If the file exists, serve it; otherwise, proxy to archive.org.
-            try_files $uri @fetch_panicstream;
+            add_header X-Relisten-Proxy-Status "cached" always;
         }
 
         location @fetch_archive {
@@ -104,13 +135,21 @@ http {
 
             proxy_set_header Host archive.org;
             proxy_pass https://archive.org;
-            
-            include proxy.conf;         
+
+            include proxy.conf;
 
             # Intercept redirect responses.
             proxy_intercept_errors on;
             recursive_error_pages on;
             error_page 301 302 303 307 308 = @handle_redirect;
+
+            # Set cache headers conditionally based on response status
+            add_header Cache-Control $cache_control always;
+
+            # Add header showing this was proxied and the upstream URL
+            add_header X-Relisten-Proxy-URL "$scheme://$proxy_host$request_uri" always;
+            add_header X-Relisten-Proxy-Status "proxied" always;
+            add_header X-Relisten-Upstream-Status $upstream_status always;
         }
 
         location @fetch_phishin {
@@ -122,13 +161,21 @@ http {
 
             proxy_set_header Host phish.in;
             proxy_pass https://phish.in;
-            
-            include proxy.conf;         
+
+            include proxy.conf;
 
             # Intercept redirect responses.
             proxy_intercept_errors on;
             recursive_error_pages on;
             error_page 301 302 303 307 308 = @handle_redirect;
+
+            # Set cache headers conditionally based on response status
+            add_header Cache-Control $cache_control always;
+
+            # Add header showing this was proxied and the upstream URL
+            add_header X-Relisten-Proxy-URL "$scheme://$proxy_host$request_uri" always;
+            add_header X-Relisten-Proxy-Status "proxied" always;
+            add_header X-Relisten-Upstream-Status $upstream_status always;
         }
 
         location @fetch_panicstream {
@@ -140,22 +187,37 @@ http {
 
             proxy_set_header Host phish.in;
             proxy_pass https://phish.in;
-            
-            include proxy.conf;         
+
+            include proxy.conf;
 
             # Intercept redirect responses.
             proxy_intercept_errors on;
             recursive_error_pages on;
             error_page 301 302 303 307 308 = @handle_redirect;
+
+            # Set cache headers conditionally based on response status
+            add_header Cache-Control $cache_control always;
+
+            # Add header showing this was proxied and the upstream URL
+            add_header X-Relisten-Proxy-URL "$scheme://$proxy_host$request_uri" always;
+            add_header X-Relisten-Proxy-Status "proxied" always;
+            add_header X-Relisten-Upstream-Status $upstream_status always;
         }
 
         # This location handles intercepted redirects.
         location @handle_redirect {
             # include cors.conf;
-            include proxy.conf;     
+            include proxy.conf;
 
             set $saved_redirect_location '$upstream_http_location';
             proxy_pass $saved_redirect_location;
+
+            # Set cache headers conditionally based on response status
+            add_header Cache-Control $cache_control always;
+
+            # Add headers showing this was a redirect
+            add_header X-Relisten-Proxy-URL $saved_redirect_location always;
+            add_header X-Relisten-Proxy-Status "proxied-redirect" always;
         }
 
         # return 200 'location 3';

proxy.conf

@@ -2,7 +2,8 @@ proxy_buffering on;
 proxy_request_buffering off;
 
 # Store the fetched file to disk at /data/nginx/<request_uri>
-proxy_store /data/nginx/$original_uri;
+# Only store successful responses (not 4xx or 5xx errors)
+proxy_store $store_response;
 proxy_store_access user:rw group:rw all:r;
 
 # Allow for a flexible timeout given archive.org’s reliability issues