Ocelot Rate Limiting
I've been using Ocelot lately to build an API Gateway. Are rate limits based on the requester client id? Because i've been asked to build an api gateway in an architecture that will look like this
And all the requests will have the same id since they are passing through the proxy. I can however, identify the different requesting clients using an header token. So my question is: can i limit the number of request made by a client using the header token rather than the request id? Thanks in advance.
You could use Ocelot as a Rate Limiter based on ClientId.
"RateLimitOptions": {
"DisableRateLimitHeaders": false,
"QuotaExceededMessage": "Customize Tips!",
"HttpStatusCode": 999,
"ClientIdHeader" : "MY-CLIENT-ID"
}
The last line in Ocelot's rate limiting documentation refers to this:
ClientIdHeader - Allows you to specifiy the header that should be used to identify clients. By default it is “ClientId”
You could also implement your own middleware and use Ocelots rate limitng. So You could be able to read other Headers and get your customized client-id:
Just take a look at default rate limiting middleware provided by Ocelot: ClientRateLimitMiddleware.cs
public virtual ClientRequestIdentity SetIdentity(HttpContext httpContext, RateLimitOptions option)
{
var clientId = "client";
if (httpContext.Request.Headers.Keys.Contains(option.ClientIdHeader))
{
clientId = httpContext.Request.Headers[option.ClientIdHeader].First();
}
return new ClientRequestIdentity(
clientId,
httpContext.Request.Path.ToString().ToLowerInvariant(),
httpContext.Request.Method.ToLowerInvariant()
);
}
- AWS Cognito authoriser gives 403 error with the valid token
- Kong Ingress Controller: How to remove a plugin entry from a configuration?
- Dynamic Routing in API Gateway with Tenant-Based Service Resolution Using Spring Cloud and Eureka
- What is Upstream and Downstream services in a microservices based architecture?
- In AWS API Gateway, can method level limits for a specific end point exceed stage level limit?
- Apache Apisix state serialization
- Verify JWT Signature in IBM Datapower Gatewayscript
- How to Use Stage Variables for connection_id in aws_api_gateway_integration with Terraform?
- How to restrict access to AWS Express API via specific IP and have HTTPS certificate
- FastAPI and GCP API Gateway
- Angular CORS Error When Following Backend Redirect for OAuth2 Logout
- WSO2 API Manager 4.0.0 - Maximum Backend Throughput not working properly in a clustered environment
- Share Backend Response to used in lua script Krakend
- Is it feasible to perform authentication in KrakenD by invoking an API?
- Spring Boot Microservice Application Cors Origin Error
- Authorise Request to AWS WebSocket API Gateway using AWS_IAM
- 'Unknown Error' when sending a POST request to my Spring Boot API Gateway from my Angular app and CORS is configured correctly
- Azure AD B2C breaks OIDC spec
- Gravitee : How to change request status code
- Amazon AWS CLI delete ApiGateway, possible?
- Lambda in VPC with VPC endpoint unable to access API Gateway's API Key
- Spring Cloud API Gateway - spring.cloud.gateway.discovery.locator.lower-case-service-id=true not working for urls - 404 Not Found
- API Gateway: Insert requestId into request body using mapping template
- disable soap in wso2 api manager gateway https://IPaddr:9443/services
- How to disable showing default Axis2 services (https://localhost:8243/services/Version?wsdl) in WSO2 API manager 3.2.0?
- I want Netty webserver instead of tomcat in my spring-boot project with webflux
- HAProxy http-request with DATAPLANE API
- Ocelot Rate Limiting
- Run Kong in Docker, Kong does not show GUI in web browser
- Multiple Kong Ingress Controller for KIC 3.0.x