Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/doc/security
diff options
context:
space:
mode:
authorMichael Kozono <mkozono@gmail.com>2019-08-23 22:52:53 +0300
committerMichael Kozono <mkozono@gmail.com>2019-08-23 22:52:53 +0300
commit8af8da09d0d25d25b5977b7c74da364e6fbec5fa (patch)
tree1473c344b7ee0d4c79b19c2fad03b0773ac5e3dc /doc/security
parent24ff249ded4bc2098e590d1f3605a3ebe3954723 (diff)
Note some JWT requests aren't rate limited
Diffstat (limited to 'doc/security')
-rw-r--r--doc/security/rack_attack.md2
1 files changed, 2 insertions, 0 deletions
diff --git a/doc/security/rack_attack.md b/doc/security/rack_attack.md
index b99bfb16829..4ad5fd0d16c 100644
--- a/doc/security/rack_attack.md
+++ b/doc/security/rack_attack.md
@@ -81,6 +81,8 @@ This limit is reset by requests that authenticate successfully. For example, 29
failed authentication requests followed by 1 successful request, followed by 29
more failed authentication requests would not trigger a ban.
+JWT requests authenticated by gitlab-ci-token are excluded from this limit.
+
No response headers are provided.
## Settings
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-14 08:52:40 +0300