Add RateLimiter to RawController

* Limits raw requests to 300 per minute and per raw path. * Add a new attribute to ApplicationSettings so user can change this value on their instance. * Uses Gitlab::ActionRateLimiter to limit the raw requests. * Add a new method into ActionRateLimiter to log the event into auth.log Related to https://gitlab.com/gitlab-org/gitlab-ce/issues/48717
author: Mayra Cabrera <mcabrera@gitlab.com> 2019-07-24 19:49:31 +0000
committer: Stan Hu <stanhu@gmail.com> 2019-07-24 19:49:31 +0000
commit: 3cefc5d7df09dbc21cd9c892bc6c62b5b583ca6a (patch)
tree: 2e996ca71e4e16c74f1be94d1f7143ac3e49dad6 /app/controllers/admin/application_settings_controller.rb
parent: b70dbabb6373e7624e3bcb7a6d78049621db891c (diff)
download: gitlab-ce-3cefc5d7df09dbc21cd9c892bc6c62b5b583ca6a.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/app/controllers/admin/application_settings_controller.rb b/app/controllers/admin/application_settings_controller.rb
index e9ec8876688..99411641874 100644
--- a/app/controllers/admin/application_settings_controller.rb
+++ b/app/controllers/admin/application_settings_controller.rb
@@ -106,6 +106,7 @@ class Admin::ApplicationSettingsController < Admin::ApplicationController
       :lets_encrypt_notification_email,
       :lets_encrypt_terms_of_service_accepted,
       :domain_blacklist_file,
+      :raw_blob_request_limit,
       disabled_oauth_sign_in_sources: [],
       import_sources: [],
       repository_storages: [],
author	Mayra Cabrera <mcabrera@gitlab.com>	2019-07-24 19:49:31 +0000
committer	Stan Hu <stanhu@gmail.com>	2019-07-24 19:49:31 +0000
commit	3cefc5d7df09dbc21cd9c892bc6c62b5b583ca6a (patch)
tree	2e996ca71e4e16c74f1be94d1f7143ac3e49dad6 /app/controllers/admin/application_settings_controller.rb
parent	b70dbabb6373e7624e3bcb7a6d78049621db891c (diff)
download	gitlab-ce-3cefc5d7df09dbc21cd9c892bc6c62b5b583ca6a.tar.gz