vbatts/quay
Archived
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
This repository has been archived on 2020-03-24. You can view files and clone it, but cannot push or open issues or pull requests.
quay/conf/rate-limiting.conf

16 lines
589 B
Text
Raw Normal View History

Add rate limiting to nginx. The only caveat is that "One megabyte zone can keep about 16 thousand 64-byte states. If the zone storage is exhausted, the server will return the 503 (Service Temporarily Unavailable) error to all further requests." -- nginx documentation
2015-01-13 20:59:04 +00:00
# vim: ft=nginx
nginx: make rate limiting awesome
2015-02-19 21:24:05 +00:00
# Check the Authorization header and, if it is empty, use their proxy protocol
# IP, else use the header as their unique identifier for rate limiting.
# Enterprise users will never be using proxy protocol, thus the value will be
# empty string. This means they will not get rate limited.
map $http_authorization $registry_bucket {
"" $proxy_protocol_addr;
default $http_authorization;
}
nginx: rename api rate limit bucket to verbs
2015-02-25 17:32:30 +00:00
limit_req_zone $proxy_protocol_addr zone=verbs:10m rate=2r/s;
nginx: tweak rate limiting; remove webapp limiting
2015-02-25 17:22:41 +00:00
limit_req_zone $registry_bucket zone=repositories:10m rate=2r/s;
Add rate limiting to nginx. The only caveat is that "One megabyte zone can keep about 16 thousand 64-byte states. If the zone storage is exhausted, the server will return the 503 (Service Temporarily Unavailable) error to all further requests." -- nginx documentation
2015-01-13 20:59:04 +00:00
limit_req_status 429;
limit_req_log_level warn;
Reference in a new issue Copy permalink