bnomei / kirby3-fingerprint
File Method and css/js helper to add cache-busting hash and optional Subresource Integrity to file
Installs: 27 810
Dependents: 1
Suggesters: 0
Security: 0
Stars: 42
Watchers: 1
Forks: 4
Open Issues: 4
Type:kirby-plugin
Requires
- php: >=8.2
- getkirby/composer-installer: ^1.2
Requires (Dev)
- getkirby/cms: ^5.0.0-alpha.4
- larastan/larastan: ^v3.0.0
- laravel/pint: ^1.13
- pestphp/pest: ^v3.5.1
- spatie/ray: ^1.39
Suggests
- bnomei/kirby3-security-headers: Let's make the web a saver place – sensible defaults included.
- diverently/laravel-mix-kirby: Consider using this plugin instead if all your assets are versioned by laravel mix.
- dev-master
- 5.2.1
- 5.2.0
- 5.1.0
- 5.0.0
- 3.2.0
- 3.1.2
- 3.1.1
- 3.1.0
- 3.0.14
- 3.0.13
- 3.0.12
- 3.0.11
- 3.0.10
- 3.0.9
- 3.0.8
- 3.0.7
- 3.0.6
- 3.0.5
- 3.0.4
- 3.0.3
- 3.0.2
- 3.0.1
- 3.0.0
- 2.3.1
- 2.3.0
- 2.2.5
- 2.2.4
- 2.2.3
- 2.2.2
- 2.2.1
- 2.2.0
- 2.1.0
- 2.0.6
- 2.0.5
- 2.0.4
- 2.0.3
- 2.0.1
- 2.0.0
- 1.2.0
- 1.1.2
- 1.1.1
- 1.1.0
- 1.0.0
- dev-dependabot/composer/guzzlehttp/psr7-2.5.0
- dev-dependabot/composer/getkirby/cms-3.6.6.2
- dev-dependabot/composer/guzzlehttp/guzzle-7.5.0
This package is auto-updated.
Last update: 2025-07-18 15:39:57 UTC
README
File Method and css/js helper to add a cache busting hash and optional Subresource Integrity to files.
Installation
- unzip master.zip as folder
site/plugins/kirby3-fingerprintor git submodule add https://github.com/bnomei/kirby3-fingerprint.git site/plugins/kirby3-fingerprintorcomposer require bnomei/kirby3-fingerprint
Usage
Warning
This Plugin does not override the build in js()/css() helpers. Use css_f/Bnomei\Fingerprint::css and js_f/Bnomei\Fingerprint::js when you need them.
echo css_f('/assets/css/index.css'); echo Bnomei\Fingerprint::css('/assets/css/index.css'); // <style> element with https://../assets/css/index.css?v=1203291283 echo js_f('/assets/js/index.min.js'); echo Bnomei\Fingerprint::js('/assets/js/index.min.js'); // <link> element https://../assets/js/index.min.js?v=1203291283 echo url_f('/assets/css/index.css'); echo Bnomei\Fingerprint::url('/assets/css/index.css'); // raw url https://../assets/css/index.css?v=1203291283 echo $page->file('ukulele.pdf')->fingerprint(); // https://../ukulele.pdf?v=1203291283 echo $page->file('ukulele.pdf')->integrity(); // sha384-oqVuAfXRKap7fdgcCY5uykM6+R9GqQ8K/uxy9rx7HNQlGYl1kPzQho1wx4JwY8wC // generate sri from local file echo Bnomei\Fingerprint::js( '/assets/js/index.min.js', [ "integrity" => true ] ); /* <script src="https://../assets/js/index.min.js" integrity="sha384-oqVuAfXRKap7fdgcCY5uykM6+R9GqQ8K/uxy9rx7HNQlGYl1kPzQho1wx4JwY8wC" crossorigin="anonymous"></script> */ echo Bnomei\Fingerprint::js( 'https://external.cdn/framework.min.js', [ "integrity" => "sha384-oqVuAfXRKap7fdgcCY5uykM6+R9GqQ8K/uxy9rx7HNQlGYl1kPzQho1wx4JwY8wC" ] ); /* <script src="https://external.cdn/framework.min.js" integrity="sha384-oqVuAfXRKap7fdgcCY5uykM6+R9GqQ8K/uxy9rx7HNQlGYl1kPzQho1wx4JwY8wC" crossorigin="anonymous"></script> */
Cache
Warning
If global debug mode is true, the plugin will flush its cache and not write any more caches.
Hash and SRI values are cached and only updated when the original file is modified.
For best performance, set either the global or plugin-specific cache driver to one using the server's memory, not the default using files on the hard disk (even on SSDs). If available, I suggest Redis/APCu or leave it at file otherwise.
site/config/config.php
return [ 'cache' => [ 'driver' => 'apcu', // or redis ], 'bnomei.fingerprint.cache' => [ 'type' => 'apcu', // or redis ], ];
Similar Plugins
The following plugins can do cache busting, but they do not cache the modified timestamp, nor can they do SRI, nor do cache busting for non-js/CSS files.
Settings
| bnomei.fingerprint. | Default | Description |
|---|---|---|
| hash | callback |
will lead to the hashing logic |
| integrity | callback |
use it to set option 'integrity' => null, |
| digest | 'sha384' |
Cryptographic digest to be used for SRI hashes either 'sha256', 'sha384' or 'sha512'. |
| https | true |
boolean value or callback to force https scheme on all but localhost enviroments. |
| query | true or string or callback |
myfile.js?v={HASH}, myfile.{HASH}.js or loaded from manifest file |
| ignore-missing-auto | true or false |
silently ignore if an asset requested by @auto rule does not exist |
| absolute | true or false |
return the full URL of an asset or relative URLS based on site()->url() |
Query option: true (default)
myfile.js?v={HASH}
This is the default since it works without additional changes to your server but be aware that query strings are not perfect.
Query option: false
If you disable the query option, you also need to add Apache or Nginx rules. These rules will redirect CSS and JS files from with hash to the asset on disk.
.htaccess - put this directly after the RewriteBase statment
# RewriteBase /
RewriteCond %{REQUEST_FILENAME} !-f
RewriteRule ^(.+)\.([0-9a-z]{32})\.(js|css)$ $1.$3 [L]
Nginx virtual host setup
location ~ (.+)\.(?:\w+)\.(js|css)$ {
try_files $uri $1.$2;
}
Query option: string (Manifest files)
You can also forward the path of a JSON-encoded manifest file, and the plugin will load whatever hash is defined there. This works great for gulp-rev or with laravel mix versioning.
Disclaimer
This plugin is provided "as is" with no guarantee. You can use it at your own risk and always test it before using it in a production environment. If you find any issues, please create a new issue.
License
It is discouraged to use this plugin in any project that promotes racism, sexism, homophobia, animal abuse, violence or any other form of hate speech.
Credits
- based on @iksi https://github.com/iksi/kirby-fingerprint (Kirby V2)
- @S1SYPHOS https://github.com/S1SYPHOS/kirby-sri (Kirby V2)