Protei/PromucFlow_constructor
2
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity

feat: Rate limiting on Caddy (#31496)

Browse Source
This commit is contained in:
Goutham Pratapa 2024-03-07 16:22:29 +05:30 committed by GitHub
parent c5aae757e5
commit c79947a3fc
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 12 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
deploy/docker/fs/opt/appsmith/caddy-reconfigure.mjs
View File

@ -7,6 +7,9 @@ import {X509Certificate} from "crypto"
// This was the effective behaviour before Caddy. // This was the effective behaviour before Caddy.
const CUSTOM_DOMAIN = (process.env.APPSMITH_CUSTOM_DOMAIN || "").replace(/^https?:\/\/.+$/, "") const CUSTOM_DOMAIN = (process.env.APPSMITH_CUSTOM_DOMAIN || "").replace(/^https?:\/\/.+$/, "")
// Rate limit, numeric value defining the requests-per-second allowed.
const RATE_LIMIT = parseInt(process.env._APPSMITH_RATE_LIMIT || 15, 10)
const CaddyfilePath = process.env.TMP + "/Caddyfile" const CaddyfilePath = process.env.TMP + "/Caddyfile"
let certLocation = null let certLocation = null
@ -44,6 +47,7 @@ parts.push(`
servers { servers {
trusted_proxies static 0.0.0.0/0 trusted_proxies static 0.0.0.0/0
} }
order rate_limit before basicauth
} }
(file_server) { (file_server) {
@ -113,6 +117,14 @@ parts.push(`
import reverse_proxy 9001 import reverse_proxy 9001
} }
rate_limit {
zone dynamic_zone {
key {http.request.remote_ip}
events ${RATE_LIMIT}
window 1s
}
}
handle_errors { handle_errors {
respond "{err.status_code} {err.status_text}" {err.status_code} respond "{err.status_code} {err.status_text}" {err.status_code}
header -Server header -Server