Page MenuHomeSoftware Heritage

define rate limits for anonymous access to the API
Closed, ResolvedPublic

Description

We need to define which rate limits we want to apply, given the current infrastructure we have, for anonymous access to the API.

Event Timeline

zack created this task.Jan 30 2017, 2:05 PM
zack moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.
zack moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.
olasd raised the priority of this task from Normal to Unbreak Now!.Feb 1 2017, 6:02 PM
olasd added a subscriber: olasd.

The rate limits have been (way) increased for the load testing to have any chance of giving meaningful results.

We _need_ to lower them before release !

zack closed this task as Resolved.
zack claimed this task.

Based on the results of T652, we will use the following rate limits:

  • global limit: 250'000 requests/hour (= 70 req/sec * 60 * 60)
  • hourly limit: 120 requests/hour (global limit divided by 2000 hypothetical simultaneous users)
  • burst control: 2 requests/second