Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Isufficient Throttling with BioPortal API when Requests Come from Multiple IP Addresses #168

Open
alexskr opened this issue Oct 15, 2024 · 0 comments
Open

Isufficient Throttling with BioPortal API when Requests Come from Multiple IP Addresses #168

alexskr opened this issue Oct 15, 2024 · 0 comments

Comments

@alexskr
Copy link
Member

alexskr commented Oct 15, 2024

We have noticed that the current setup using rack-attack to throttle requests to the BioPortal API is not sufficiently throttling requests when a single user makes requests from multiple IP addresses. It appears that rack-attack is primarily IP-based and doesn't account for scenarios where requests from the same user are distributed across various IPs, leading to exceeding the intended rate limits.

API requests should be throttled based on a combination of user identification (e.g., API keys) and IP addresses to ensure rate limits are consistently applied across all requests from the same user.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@alexskr