Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-pages.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/app.go
diff options
context:
space:
mode:
Diffstat (limited to 'app.go')
-rw-r--r--app.go12
1 files changed, 9 insertions, 3 deletions
diff --git a/app.go b/app.go
index 3f286033..18513f0d 100644
--- a/app.go
+++ b/app.go
@@ -31,6 +31,7 @@ import (
"gitlab.com/gitlab-org/gitlab-pages/internal/handlers"
"gitlab.com/gitlab-org/gitlab-pages/internal/httperrors"
"gitlab.com/gitlab-org/gitlab-pages/internal/logging"
+ "gitlab.com/gitlab-org/gitlab-pages/internal/lru"
"gitlab.com/gitlab-org/gitlab-pages/internal/netutil"
"gitlab.com/gitlab-org/gitlab-pages/internal/ratelimiter"
"gitlab.com/gitlab-org/gitlab-pages/internal/rejectmethods"
@@ -266,9 +267,14 @@ func (a *theApp) buildHandlerPipeline() (http.Handler, error) {
if a.config.RateLimit.SourceIPLimitPerSecond > 0 {
rl := ratelimiter.New(
- metrics.RateLimitSourceIPBlockedCount,
- metrics.RateLimitSourceIPCachedEntries,
- metrics.RateLimitSourceIPCacheRequests,
+ lru.New("source_ip",
+ // based on an avg ~4,000 unique IPs per minute
+ // https://log.gprd.gitlab.net/app/lens#/edit/f7110d00-2013-11ec-8c8e-ed83b5469915?_g=h@e78830b
+ lru.WithMaxSize(5000),
+ lru.WithCachedEntriesMetric(metrics.RateLimitSourceIPCachedEntries),
+ lru.WithCachedRequestsMetric(metrics.RateLimitSourceIPCacheRequests),
+ ),
+ ratelimiter.WithBlockedCountMetric(metrics.RateLimitSourceIPBlockedCount),
ratelimiter.WithSourceIPLimitPerSecond(a.config.RateLimit.SourceIPLimitPerSecond),
ratelimiter.WithSourceIPBurstSize(a.config.RateLimit.SourceIPBurst),
)
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-25 18:10:22 +0300