health: dedicated 100/1000 rate limit for the redesigned SPA
Some checks failed
ci/woodpecker/push/default Pipeline failed
Some checks failed
ci/woodpecker/push/default Pipeline failed
Viktor hit 429s browsing the redesigned health app. The default shared limiter is 10 req/s / burst 50, but each page load is the shell (JS chunks + two self-hosted Geist woff2) plus a 5-8 call API burst, so fast tab-to-tab navigation from one client IP overruns burst 50 — Traefik 429s the tail and the affected cards/pages render empty. Give health its own limiter (average 100, burst 1000) and skip the default, exactly as tripit/immich/actualbudget/ha-sofia already do for the same parallel-burst pattern. Attached via the ingress_factory escape hatch (skip_default_rate_limit + extra_middlewares). Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
This commit is contained in:
parent
6dc77f4612
commit
086ff85911
2 changed files with 30 additions and 0 deletions
|
|
@ -206,6 +206,11 @@ module "ingress" {
|
|||
name = "health"
|
||||
tls_secret_name = var.tls_secret_name
|
||||
max_body_size = "100m"
|
||||
# The redesigned SPA bursts well past the default 10/50 limiter on each page
|
||||
# load (shell + fonts + a 5-8 call API burst). Swap the shared limiter for a
|
||||
# health-specific one (100/1000), mirroring tripit/immich/actualbudget.
|
||||
skip_default_rate_limit = true
|
||||
extra_middlewares = ["health-rate-limit@kubernetescrd"]
|
||||
extra_annotations = {
|
||||
"gethomepage.dev/enabled" = "true"
|
||||
"gethomepage.dev/name" = "Health"
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue