diff options
Diffstat (limited to 'doc/security/rate_limits.md')
-rw-r--r-- | doc/security/rate_limits.md | 21 |
1 files changed, 13 insertions, 8 deletions
diff --git a/doc/security/rate_limits.md b/doc/security/rate_limits.md index ac532ee491a..695a0d52af6 100644 --- a/doc/security/rate_limits.md +++ b/doc/security/rate_limits.md @@ -32,8 +32,8 @@ similarly mitigated by a rate limit. You can set these rate limits in the Admin Area of your instance: - [Import/Export rate limits](../user/admin_area/settings/import_export_rate_limits.md) -- [Issues rate limits](../user/admin_area/settings/rate_limit_on_issues_creation.md) -- [Notes rate limits](../user/admin_area/settings/rate_limit_on_notes_creation.md) +- [Issue rate limits](../user/admin_area/settings/rate_limit_on_issues_creation.md) +- [Note rate limits](../user/admin_area/settings/rate_limit_on_notes_creation.md) - [Protected paths](../user/admin_area/settings/protected_paths.md) - [Raw endpoints rate limits](../user/admin_area/settings/rate_limits_on_raw_endpoints.md) - [User and IP rate limits](../user/admin_area/settings/user_and_ip_rate_limits.md) @@ -42,6 +42,7 @@ You can set these rate limits in the Admin Area of your instance: - [Files API rate limits](../user/admin_area/settings/files_api_rate_limits.md) - [Deprecated API rate limits](../user/admin_area/settings/deprecated_api_rate_limits.md) - [GitLab Pages rate limits](../administration/pages/index.md#rate-limits) +- [Pipeline rate limits](../user/admin_area/settings/rate_limit_on_pipelines_creation.md) You can set these rate limits using the Rails console: @@ -72,11 +73,16 @@ For configuration information, see ### Git operations using SSH -> - [Introduced](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/78373) in GitLab 14.7. +> - [Introduced](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/78373) in GitLab 14.7 [with a flag](../administration/feature_flags.md) named `rate_limit_gitlab_shell`. Disabled by default. > - [Enabled on GitLab.com and self-managed](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/79419) in GitLab 14.8. -GitLab rate limits Git operations using SSH by user account and project. If a request from a user for a Git operation -on a project exceeds the rate limit, GitLab drops further connection requests from that user for the project. +FLAG: +On self-managed GitLab, by default this feature is available. To disable the feature, ask an administrator to +[disable the feature flag](../administration/feature_flags.md) named `rate_limit_gitlab_shell`. On GitLab.com, this feature +is available. + +GitLab applies rate limits to Git operations that use SSH by user account and project. When the rate limit is exceeded, GitLab rejects +further connection requests from that user for the project. The rate limit applies at the Git command ([plumbing](https://git-scm.com/book/en/v2/Git-Internals-Plumbing-and-Porcelain)) level. Each command has a rate limit of 600 per minute. For example: @@ -86,9 +92,8 @@ Each command has a rate limit of 600 per minute. For example: Because the same commands are shared by `git-upload-pack`, `git pull`, and `git clone`, they share a rate limit. -The requests/minute threshold for this rate limit is not configurable. Self-managed customers can disable this -rate limit by [disabling the feature flag](../administration/feature_flags.md#enable-or-disable-the-feature) -with `Feature.disable(:rate_limit_gitlab_shell)`. +The requests per minute threshold for this rate limit is not configurable. Self-managed customers can disable this +rate limit. ### Repository archives |