HomeSoftware Heritage
Diffusion Web applications e870ec2b9a40

api/graph: Implement anti-DoS policies for graph visits
e870ec2b9a40
Actions

Description

api/graph: Implement anti-DoS policies for graph visits

In order to allow public access to the graph API, we need to prevent
users to DoS the graph service with resource intensive queries.

Fortunately, the graph API supports a max_edges parameter to limit the
number of edges traversed by the graph.

According to the type of user querying the graph service through the
Web API proxy, a maximum value for the max_edges will be set before
sending a request to the graph API.

Three type of users are considered: anonymous, standard and staff.
The maximum values for the max_edges query parameter according to
user types are retrieved from the webapp configuration.

Related to T3836

Details

Provenance
anlambertAuthored on Jan 11 2022, 2:25 PM
anlambertPushed on Jan 12 2022, 3:00 PM
Differential Revision
D6914: api/graph: Implement anti-DoS policies for graph visits
Parents
rDWAPPS9e7732ccebe3: api/graph: Handle query parameters that might be passed in graph_query
Branches
Unknown
Tags
Unknown
References
tag: v0.0.351
Tasks
T3836: Define and implement an anti-DoS policy for graph visits using the max_edges parameter
Build Status
Buildable 25975
Build 40597: test-and-buildJenkins console · Jenkins

Changes (3)

PathSize
swh/
web/
api/
views/
tests/
api/
views/

rDWAPPSe870ec2b9a40

View Options

swh/web/api/views/graph.py

Loading...
View Options

swh/web/config.py

Loading...
View Options

swh/web/tests/api/views/test_graph.py

Loading...
About · Developer information · Legal