Caching¶

Triplet has several independent cache layers. They optimize different work and have different invalidation behavior. The important operational distinction is whether a cache stores response bytes, source bytes, in-process metadata, or an authorization decision.

Derivative cache¶

Configure a filesystem root for encoded IIIF image responses. This is the main cache for public IIIF traffic: once a derivative is generated, later requests for the same identifier, source version, region, size, rotation, quality, and format can be served without running libvips again.

cache:
  root: /var/lib/triplet/cache
  max_bytes: 500GiB
  max_age: 720h

max_bytes is a best-effort filesystem eviction target. max_age is an optional age limit for derivative entries. Failed transforms and HTTP error responses are not stored.

cache.max_bytes is the approximate total retained size of derivative payload files under cache.root. It is different from iiif.image.max_derivative_bytes, which limits one generated response before it can be returned or cached. A cache write can temporarily exceed cache.max_bytes before eviction runs. When size eviction runs, Triplet removes the oldest derivative payload files first based on payload file modification time; reads do not refresh cache age.

cache.max_age is based on the derivative payload file modification time, not when it was last requested. When a cached derivative is older than max_age, Triplet removes it and treats the request as a cache miss. Expired entries are also removed opportunistically when new entries are written. Set max_age: 0 or omit it to keep derivative files until size eviction, manual deletion, invalidation, or cache-key changes make them unused.

Derivative invalidation¶

The route writes an invalidation marker into the derivative cache. Subsequent image requests for that identifier use a new cache namespace, so old derivative objects are ignored even when the source bytes and metadata have not changed. This is useful for local URL mappings with auth_probe: true, where repository permission changes may need to take effect before the configured auth-probe TTL expires. When the source backend supports per-identifier auth caching, the same route also clears those cached auth-probe decisions for the identifier.

The invalidation route is protected by a bearer token and optional caller CIDR checks. See Authorization for the route configuration and caller requirements.

curl -X POST \
  -H "Authorization: Bearer ${TRIPLET_IMAGE_CACHE_INVALIDATION_TOKEN}" \
  "https://iiif.example.edu/iiif/3/https%3A%2F%2Frepo.example.edu%2Fsystem%2Ffiles%2Fimage.tif/cache/invalidate"

The identifier in the request path must be URI-encoded exactly as it appears in the IIIF Image API request path segment.

Source version metadata¶

Derivative cache keys include a source version so Triplet does not reuse old encoded responses after the source changes. For HTTP sources, Triplet prefers ETag when the upstream provides one. If there is no ETag, Triplet uses the upstream Last-Modified value plus the source size. If neither source version signal is available, Triplet treats the derivative response as uncacheable because it cannot distinguish a fresh source from a changed one.

Last-Modified is also parsed as the source modification time. The in-process info.json dimension cache uses source size and modification time, so updated HTTP Last-Modified metadata causes dimension-cache misses for changed sources.

Source cache¶

The optional source cache stores fetched source bytes, primarily for HTTP identifiers. It is useful when the repository source is remote, expensive to fetch repeatedly, or slower than Triplet's local cache storage. It does not replace the HTTP source allowlist: cache fills still pass through the same host checks.

cache:
  source_root: /var/lib/triplet/source-cache
  source_max_bytes: 1GiB
  source_stale_after: 24h

When source_stale_after is set, stale hits are served immediately and refreshed in the background. Upstream 4xx/5xx responses are not stored.

HTTP metadata cache¶

Remote URL identifiers need source metadata to build derivative cache keys. By default, Triplet revalidates that metadata with the upstream source before it checks the derivative cache. Configure sources.http.metadata_cache_ttl to allow recent metadata to stand in for that upstream HEAD or range request:

sources:
  http:
    metadata_cache_ttl: 5m

This is an explicit staleness window. While metadata is cached, a derivative cache hit can be served without touching the remote source. If the remote source changes, disappears, or changes authorization during the TTL, Triplet may serve the cached derivative until the metadata entry expires.

Authorization decision cache¶

Local URL mappings with auth_probe: true cache anonymous and credentialed source authorization decisions in process. See Authorization for the full auth-probe flow, source authorization terminology, and TTL behavior.

In-process caches¶

Image metadata cache¶

Triplet can cache the source dimensions used to build Image API info.json. This avoids reopening or reprobing the same source when clients repeatedly load viewer metadata.

iiif:
  image:
    info_dimension_cache: true

The dimension cache is in process and keyed by identifier plus source size and modification time metadata. It is enabled by default. Source changes with updated metadata miss the cache.

libvips operation cache¶

The libvips operation cache is disabled by default because Triplet's derivative and source caches are usually the right place to retain work across requests.

vips:
  cache_max_mem: 0
  cache_max_files: 0

The libvips operation cache is process-local and separate from Triplet's derivative and source caches.

Cache layer summary¶

Layer	Configuration	What is cached	Invalidation / freshness
Derivative cache	`cache.root`; optional `cache.max_bytes`, `cache.max_age`, `iiif.image.cache_invalidation_token`	Encoded IIIF image responses, keyed by identifier, source version, invalidation marker, region, size, rotation, quality, and format.	A changed source version produces a new key. The protected invalidation route bumps the per-identifier invalidation marker. `cache.max_bytes` is a best-effort aggregate cache budget; `cache.max_age` removes derivative entries older than the configured duration. `iiif.image.max_derivative_bytes` is the per-response size limit before return/cache. Failed transforms and HTTP error responses are not stored.
HTTP source cache	`cache.source_root`; optional `cache.source_max_bytes`, `cache.source_stale_after`	Original source bytes fetched through the HTTP source backend.	Keys are source identifiers. When `source_stale_after` is set, stale hits are served immediately and refreshed in the background. Upstream 4xx/5xx responses are not stored.
HTTP metadata cache	`sources.http.metadata_cache_ttl`	Successful remote source metadata lookups for URL identifiers.	In-memory only. While fresh, derivative cache checks can avoid upstream metadata requests. This can serve stale derivatives until the TTL expires.
`info.json` dimension cache	`iiif.image.info_dimension_cache`	Source dimensions used to build Image API `info.json`.	In-memory only. Entries are keyed by identifier plus source size/modtime metadata, so source changes with updated metadata miss the cache.
Local URL auth-probe cache	`sources.http.metadata_cache_ttl` for mappings with `auth_probe: true`	Authorization probe results for local URL mappings. Anonymous and credentialed probes are cached separately. See Authorization.	In-memory only. The image cache invalidation route also clears matching auth-probe entries when the source backend supports it.
libvips operation cache	`vips.cache_max_mem`, `vips.cache_max_files`	libvips in-process operation results.	Disabled by default in the example config. This is process-local and separate from Triplet's derivative/source caches.