cebert3d ago

Incident March 30th, 2026 – Accidental CDN Caching

https://blog.railway.com/p/incident-report-march-30-2026-accidental-cdn-caching

Incident Report: March 30th, 2026 — Authenticated user data cached

Railway experienced an incident where CDN features were accidentally enabled for some domains without users enabling them.

Railway Blog
Show threadsublinear3d ago

I'm curious if having unique URLs per user session would mitigate this.

I think that's already best practice in most API designs anyway?

Show threadkay_o

Probably.

No, it isn't. Ive not seen this in an API ever and only in webapps ?phpsessid= back in childhood

Mar 31 at 4:50amWeb