changelogs/unreleased/sh-avoid-rate-limit-container-registry-events.yml · e9f02ecc9a940c648cc24dc7472f94d6874f453d · nexedi / gitlab-ce

Skip Rack Attack rate limiting for container registry event API · e0cbb1f8

Stan Hu authored Apr 11, 2021

As seen in https://gitlab.com/gitlab-org/gitlab/-/issues/327416,
previously Rack Attack throttled
`/api/v4/container_registry_event/events`, which then caused Rack Attack
to rate limit on other unauthenticated requests, such as fetches to
remote CI YAML files.

Since this is a trusted request from the Docker API, we can exempt this
from our rate limiting. We now skip the request if the path starts with
`/api/v4/container_registry_event/`.  We now skip the request if the
path starts with `/api/v4/container_registry_event/`.

Relates to https://gitlab.com/gitlab-org/gitlab/-/issues/327416

e0cbb1f8

sh-avoid-rate-limit-container-registry-events.yml 116 Bytes

Replace sh-avoid-rate-limit-container-registry-events.yml