vsudilov
commented
9 years ago Implemented a hackish solution: if X-Forwarded-Authorization is present in request.headers, check if request.oauth.client.client_id is within a hardcoded list of known/approved clients. If it is, set the ratelimit scope function to a random salt.
References https://github.com/aholachek/vis-services/issues/5