retaildevcrews / helium-typescript

A secure Node.js and Restify Web API reference application using Managed Identity, Key Vault, and Cosmos DB that is designed to be deployed to Azure App Service

Cache healthz response for 60 seconds

bartr opened this issue 4 years ago · comments

Bart Robertson commented 4 years ago

Description

In order to prevent a DoS attack on the /healthz and /healthz/ietf endpoints, cache the response for 60 (config) seconds
checking the headers from curl or http, there isn't a cache-control header

Expected Behavior

response is cached
cache control header set

Reproduce

use httpie or curl to check the response headers