dkam/clinch
1
0
Fork 0
Code Issues 2 Pull Requests Actions 1 Packages Projects Releases Wiki Activity

Remove the rate limit for the forward auth system
Some checks are pending
CI / scan_ruby (push) Waiting to run
Details
CI / scan_js (push) Waiting to run
Details
CI / lint (push) Waiting to run
Details
CI / test (push) Waiting to run
Details
CI / system-test (push) Waiting to run
Details

Browse Source
This commit is contained in:
Dan Milne
2025-12-28 14:40:53 +11:00
parent 283feea175
commit ab362aabac
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
Dockerfile
View File

@@ -11,7 +11,7 @@
ARG RUBY_VERSION=3.4.6 ARG RUBY_VERSION=3.4.6
FROM docker.io/library/ruby:$RUBY_VERSION-slim AS base FROM docker.io/library/ruby:$RUBY_VERSION-slim AS base
LABEL org.opencontainers.image.source https://github.com/dkam/clinch LABEL org.opencontainers.image.source=https://github.com/dkam/clinch
# Rails app lives here # Rails app lives here
WORKDIR /rails WORKDIR /rails

2
app/controllers/api/forward_auth_controller.rb
View File

@@ -3,7 +3,7 @@ module Api
# ForwardAuth endpoints need session storage for return URL # ForwardAuth endpoints need session storage for return URL
allow_unauthenticated_access allow_unauthenticated_access
skip_before_action :verify_authenticity_token skip_before_action :verify_authenticity_token
rate_limit to: 100, within: 1.minute, only: :verify, with: -> { head :too_many_requests } # No rate limiting on forward_auth endpoint - proxy middleware hits this frequently
# GET /api/verify # GET /api/verify
# This endpoint is called by reverse proxies (Traefik, Caddy, nginx) # This endpoint is called by reverse proxies (Traefik, Caddy, nginx)