mirror of
https://github.com/zulip/zulip.git
synced 2025-11-04 05:53:43 +00:00
4f6fc728cd
The Session middleware only adds `Vary: cookie` if it sees an access to the from inside of it. Because we are effectively, from the Django session middleware's point of view, returning the static content of `request.saved_response` and never accessing the session, it does not set `Vary: cookie` on longpoll requests. Explicitly mark Tornado requests as varying by cookie.