Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

1/8 = 0.1 Add rate limiting to the API #60

Open
rtzll opened this issue Nov 13, 2020 · 0 comments
Open

1/8 = 0.1 Add rate limiting to the API #60

rtzll opened this issue Nov 13, 2020 · 0 comments
Assignees
@uliSchuster
Labels
security access control, OWASP, secure configuration
Projects
Clair Berlin Development

Comments

@rtzll
Copy link
Contributor

rtzll commented Nov 13, 2020

Especially for the /auth endpoint we should ensure do throttle any brute force attempts.
On other endpoints this would be nice too.

Existing module: https://github.com/jsocol/django-ratelimit
@uliSchuster uliSchuster added this to To do in Clair Berlin Development via automation Nov 18, 2020
@uliSchuster uliSchuster added the security access control, OWASP, secure configuration label Nov 18, 2020
@uliSchuster uliSchuster self-assigned this Nov 19, 2020
@jawebada jawebada changed the title Add rate limiting to the API 13 / X Add rate limiting to the API Dec 18, 2020
@jawebada jawebada changed the title 13 / X Add rate limiting to the API 8 / X Add rate limiting to the API Dec 18, 2020
@uliSchuster uliSchuster changed the title 8 / X Add rate limiting to the API 1/8 = 0.1 Add rate limiting to the API Dec 19, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@uliSchuster uliSchuster

Labels
security access control, OWASP, secure configuration
Projects
Clair Berlin Development
  
To do
Milestone
No milestone
Development

No branches or pull requests
2 participants
@rtzll @uliSchuster