Find out why rate-limiting is not working correctly

Signalen / backend

Backend for Signalen, an application that helps cities manage and prioritize nuisance reports.

https://signalen.org

Mozilla Public License 2.0

5 stars 5 forks source link

Find out why rate-limiting is not working correctly #159

Open bartjkdp opened 3 years ago

bartjkdp commented 3 years ago

This makes sure rate-limiting is being applied as designed, e.g. by using memcache backend. After releasing the new release the following errors occured. In the logs requests are blocked with status code 429:

Rate-limiting should not occur as requests are private endpoints and from logged in users.

Possible explanations:

The original IP is not determined correctly (check if we pass X-Forwarded-For correctly).
Logged in user is not determined correctly.

bartjkdp commented 3 years ago

@CBuiVNG is fixing this in https://github.com/Amsterdam/signals/pull/819