Dan Milne 5505f99287 Add rate limiting and in-memory caching for forward auth endpoint ...

Rate limit failed attempts (50/min per IP) with 429 + Retry-After.
Cache forward auth applications in a dedicated MemoryStore (8MB LRU)
to avoid loading all apps from SQLite on every request. Debounce
last_activity_at writes to at most once per minute per session.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-03-07 11:15:54 +11:00

105 B

Raw Blame History

View Raw