You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
It should not set the X-Rate-Limit headers for the longest period,
It should set it for the exact rule matched in the Identity
Because the logic inside foreach will not follow the the longest period, it follows the rule matched in the identity.
Details:
I have two general rules "GeneralRules": [ { "Endpoint": "GET:/api/Upload/uploadfile", "Period": "50s", "Limit": 2 }, { "Endpoint": "*", "Period": "1m", "Limit": 10 } ]
However, when I call the endpoint 'api/Upload/uploadfile' it will return this response header ( the longest period)
Now if I request the endpoint 'api/Upload/uploadfile' 3 times in less than 10s, it will block the request and will return the response which tells the quota is exceeded the limit.
The issue is :
when I call the endpoint 'api/Upload/uploadfile' for the first time, why it returns the response header related to '*' end point ( the longest period), as long as the logic inside foreach won't follow the longest period, it follows the exact rules passed in the Identity.
I have checked the code inside RateLimitMiddleware<TProcessor>
and figured out that the issue is here
// set X-Rate-Limit headers for the longest period if (rulesDict.Any() && !_options.DisableRateLimitHeaders) { var rule = rulesDict.OrderByDescending(x => x.Key.PeriodTimespan).FirstOrDefault(); var headers = _processor.GetRateLimitHeaders(rule.Value, rule.Key, context.RequestAborted); headers.Context = context; context.Response.OnStarting(SetRateLimitHeaders, state: headers); }
in the first line of the if statement var rule = rulesDict.OrderByDescending(x => x.Key.PeriodTimespan).FirstOrDefault();
it will fetch the data for the rule which has the longest_PeriodTimespan_, and I believe it shouldn't do so, it must fetch the data from the rule passed in the identity.
something like
var rule = rulesDict.FirstOrDefault(x => x.Key.Endpoint.Split(":")[1].ToLower() == identity.Path);
Please advice.
The text was updated successfully, but these errors were encountered:
It should not set the X-Rate-Limit headers for the longest period,
It should set it for the exact rule matched in the Identity
Because the logic inside foreach will not follow the the longest period, it follows the rule matched in the identity.
Details:
I have two general rules
"GeneralRules": [ { "Endpoint": "GET:/api/Upload/uploadfile", "Period": "50s", "Limit": 2 }, { "Endpoint": "*", "Period": "1m", "Limit": 10 } ]However, when I call the endpoint 'api/Upload/uploadfile' it will return this response header ( the longest period)
which is related to '*' end point.
But It should return :
Now if I request the endpoint 'api/Upload/uploadfile' 3 times in less than 10s, it will block the request and will return the response which tells the quota is exceeded the limit.
The issue is :
when I call the endpoint 'api/Upload/uploadfile' for the first time, why it returns the response header related to '*' end point ( the longest period), as long as the logic inside foreach won't follow the longest period, it follows the exact rules passed in the Identity.
So, it should return :
I have checked the code inside
RateLimitMiddleware<TProcessor>and figured out that the issue is here
// set X-Rate-Limit headers for the longest periodif (rulesDict.Any() && !_options.DisableRateLimitHeaders){ var rule = rulesDict.OrderByDescending(x => x.Key.PeriodTimespan).FirstOrDefault(); var headers = _processor.GetRateLimitHeaders(rule.Value, rule.Key, context.RequestAborted); headers.Context = context; context.Response.OnStarting(SetRateLimitHeaders, state: headers); }in the first line of the if statement
var rule = rulesDict.OrderByDescending(x => x.Key.PeriodTimespan).FirstOrDefault();it will fetch the data for the rule which has the longest_PeriodTimespan_, and I believe it shouldn't do so, it must fetch the data from the rule passed in the identity.
something like
var rule = rulesDict.FirstOrDefault(x => x.Key.Endpoint.Split(":")[1].ToLower() == identity.Path);
Please advice.
The text was updated successfully, but these errors were encountered: