add a minute-based ratelimit as well

2024-05-26 14:38:28 +05:30 · 2024-05-26 14:38:28 +05:30 · bc09fb9101
commit bc09fb9101
parent fc9c1065b9
2 changed files with 2 additions and 0 deletions
--- a/privfrontends/templates/Caddyfile.j2
+++ b/privfrontends/templates/Caddyfile.j2
@ -148,6 +148,7 @@ inv.{{ server_prefix }}.projectsegfau.lt i.{{ server_prefix }}.psf.lt {
 		header -Content-Security-Policy
 	@ratelimit not path /videoplayback/* /ggpht/* /vi/* /videoplayback /videojs/* /css/* /js/* /fonts/* /apple-touch-icon.png /favicon-16x16.png /feed/webhook /feed/webhook/*
 	rate_limit @ratelimit {remote.ip} 10r/s
+	rate_limit @ratelimit {remote.ip} 100r/m
        log {
                # This is temporarily required to monitor nitter traffic due to scrapers being more active, so we need to monitor and rate limit them at a later date.
                        output file /var/log/caddy/ratelimiters.log
--- a/privfrontends/templates/eu/misc.Caddyfile
+++ b/privfrontends/templates/eu/misc.Caddyfile
@ -28,6 +28,7 @@ inv.bp.projectsegfau.lt, i.bp.psf.lt, invidious.projectsegfau.lt, inv.projectseg
 	header -Content-Security-Policy
 	@ratelimit not path /videoplayback/* /ggpht/* /vi/* /videoplayback /videojs/* /css/* /js/* /fonts/* /apple-touch-icon.png /favicon-16x16.png /feed/webhook /feed/webhook/*
 	rate_limit @ratelimit {remote.ip} 10r/s
+	rate_limit @ratelimit {remote.ip} 100r/m
    log {
            # This is temporarily required to monitor nitter traffic due to scrapers being more active, so we need to monitor and rate limit them at a later date.
                    output file /var/log/caddy/ratelimiters.log