hdhruna
commented
3 years ago Maybe adding an option to rate-limit should suffice.
Closed sankparatkar closed 3 years ago
hdhruna
commented
3 years ago Maybe adding an option to rate-limit should suffice.
sid8840
commented
3 years ago I know not the right place for suggestions. But these automated hits on the Cowin portal could crash the server down and thus are quite selfish. Come on, we all are aware about the servers these guys use. It is in my opinion a complete missuse of the knowledge since those who actually need the vaccine (45+) won't be able to access the portal. So I would say keep this thing private, the problem isn't the code its the numbers who would use it unnecessarily. They just can't keep blocking the IPs or upscaling. This just isn't the time. I hope you understand.
Kindly check the scenario COWIN Notifier Under 45 Various Other notifier
shadabshaikh0
commented
3 years ago I totally agree with @sankparatkar. I think this feature should be integrated into Aarogya Setu App. Even I created the website with the same idea. But dropped the plan of hosting it after reading @sankparatkar comment. 👍
sankparatkar
commented
3 years ago @shadabshaikh0 appreciate it man. Notifications should always be handled at the server's end. Polling from clients is terrible idea in my view, given we have millions of them. Not sure why they would expose the API to public.smh. I think Cowin Dev team should implement this feature which would be quite efficient and easier for all.
tejas-2232
commented
3 years ago I know not the right place for suggestions. But these automated hits on the Cowin portal could crash the server down and thus are quite selfish. Come on, we all are aware about the servers these guys use. It is in my opinion a complete missuse of the knowledge since those who actually need the vaccine (45+) won't be able to access the portal. So I would say keep this thing private, the problem isn't the code its the numbers who would use it unnecessarily. They just can't keep blocking the IPs or upscaling. This just isn't the time. I hope you understand.
Yes, I agree with you. We should not block the servers from other real necessary requests. But in my opinion, if the uses AWS services then the problem might get solved. After all govt infra should be that strong right? Let me know your view about it.
snehitvaddi
commented
3 years ago In my view, both of you are absolutely right.
vedmdev
commented
3 years ago The APIs used here are Public APIs(deliberately made so by the CoWIN, so that any 3rd party who can and want to build an expensive notification service around it can do so). Also these APIs have rate limiting plus caching so as to avoid any crashes of CoWIN Portal.
“The [CoWIN site’s vaccine] appointment availability data is cached and may be up to 30 minutes old. Further, these APIs are subject to a rate limit of 100 API calls per 5 minutes per IP.” – API Setu website
shadabshaikh0
commented
3 years ago @vedsm Great. Thanks for sharing.
sankparatkar
commented
3 years ago @vedsm Yeah i did come across this couple of days back. But then I checked API used by Production Cowin Portal. (Image attached)
Then I tried using the same. and I was able to without any issue. You can also try at : https://cdn-api.co-vin.in/api/v2/appointment/sessions/calendarByDistrict?district_id=392&date=10-05-2021
1) It does not seem public, it should not be coz it is used in prod. unlike (/v2/appointment/sessions/public/calendarByDistrict) 2) It does not require authentication, it ideally should. 3) This has to be Realtime since it is used in prod.
I don't see why would people not use this instead of public once for notifications.
Anyways, you don't continuously ping Amazon to check what you need is available right, you ask them and they send push notifications. It would be pretty easy to send push notifications by the server once a change is happened rather than millions pinging the server if it has. Polling would give unfair advantage to the once who know about it unless everyone does it (i.e. million requests a second) which is quite terrible in my view. That's why for vaccination purpose, I felt it was unethical.
May be they are not implementing this to avoid blame, that app send us a notification but slots were already full. I don't see any other reason. Let me know if you know.
Cheers.
sankparatkar
commented
3 years ago @tejas-2232 yeah they must using elastic cloud computing, other wise it would have crashed till now.
Okay, closing this since the previous message concludes my views. Cheers guys. Stay safe.
I know not the right place for suggestions. But these automated hits on the Cowin portal could crash the server down and thus are quite selfish. Come on, we all are aware about the servers these guys use. It is in my opinion a complete missuse of the knowledge since those who actually need the vaccine (45+) won't be able to access the portal. So I would say keep this thing private, the problem isn't the code its the numbers who would use it unnecessarily. They just can't keep blocking the IPs or upscaling. This just isn't the time. I hope you understand.