sboulahtit/orion
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

feat(static-assets): cache-bust JS/CSS via ?v=<commit-sha>, immutable in prod
All checks were successful
CI / ruff (push) Successful in 18s
Details
CI / pytest (push) Successful in 2h50m43s
Details
CI / validate (push) Successful in 33s
Details
CI / dependency-scanning (push) Successful in 33s
Details
CI / docs (push) Successful in 50s
Details
CI / deploy (push) Successful in 1m15s
Details

Browse Source 
Adds a `static_v(request, name, path=...)` Jinja helper that appends
?v=<commit-sha> from app.core.build_info, plus a CachedStaticFiles
subclass that serves Cache-Control: public, max-age=31536000, immutable
in production and no-cache in development. Browsers refetch JS/CSS
automatically on every deploy without the user having to hard-reload.

- New: app/core/static_files.py (CachedStaticFiles)
- Updated: app/templates_config.py (static_v helper)
- Updated: main.py (use CachedStaticFiles for *_static mounts)
- Codemod: 143 url_for('*_static', path='*.js'|'*.css') → static_v(...)
  across 123 templates. Images/fonts/JSON locales intentionally
  unchanged (out of scope).
- Arch rule: FE-024 (warning) flags raw url_for on JS/CSS to prevent
  drift. Note: FE-008 was already taken by the number_stepper rule.
- docs/proposals/static-asset-cache-busting.md marked Done.

Closes plan from docs/proposals/static-asset-cache-busting.md.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This commit is contained in:
Samir Boulahtit
2026-05-18 19:35:59 +02:00
parent 236fee015e
commit 54247ca4f0
129 changed files with 281 additions and 146 deletions
Download Patch File Download Diff File Expand all files Collapse all files

27
.architecture-rules/frontend.yaml
View File

@@ -936,6 +936,33 @@ frontend_component_rules:
encouraged_patterns:
- "{% from 'shared/macros/shop/trust-badges.html' import"
- id: "FE-024"
name: "Use static_v() for JS/CSS, not raw url_for()"
severity: "warning"
description: |
Static .js and .css URLs must use the cache-busting `static_v()` helper
so browsers refetch automatically after each deploy. The helper appends
`?v=<commit-sha>` from app.core.build_info — same SHA across one deploy,
flips on the next.
WRONG (browser keeps cached file after deploy):
<script src="{{ url_for('foo_static', path='admin/js/app.js') }}"></script>
<link href="{{ url_for('foo_static', path='admin/css/site.css') }}" rel="stylesheet">
RIGHT:
<script src="{{ static_v(request, 'foo_static', path='admin/js/app.js') }}"></script>
<link href="{{ static_v(request, 'foo_static', path='admin/css/site.css') }}" rel="stylesheet">
Images, fonts, and JSON locale files are intentionally out of scope —
keep using `url_for()` for those.
pattern:
file_pattern: "app/**/templates/**/*.html"
anti_patterns:
- "url_for\\(\\s*['\"]\\w+_static['\"]\\s*,\\s*path=['\"][^'\"]+\\.(?:js|css)['\"]"
exceptions:
- "base.html"
- "partials/"
# ============================================================================
# FRONTEND STYLING RULES
# ============================================================================