ndortega
commented
3 months ago Hi @bryaan,
As far as I know, this feature would have to be included in HTTP.jl in order for oxygen to use this. I'd recommend raising this issue over there.
In the meantime, I'd recommend creating either creating an authentication middleware function to restrict who can connect to your websocket or creating a rate-limiting middleware function. Oxygen automatically inserts the clients ip address into the context dictionary of each HTTP.Request.
bryaan
There should be a max payload size option for websockets to limit DOS attacks.