Note some JWT requests aren't rate limitedmk/remove-jwt-from-rate-limit-docs

author: Michael Kozono <mkozono@gmail.com> 2019-08-23 12:52:53 -0700
committer: Michael Kozono <mkozono@gmail.com> 2019-08-23 12:52:53 -0700
commit: 8af8da09d0d25d25b5977b7c74da364e6fbec5fa (patch)
tree: 1473c344b7ee0d4c79b19c2fad03b0773ac5e3dc /doc/user
parent: 24ff249ded4bc2098e590d1f3605a3ebe3954723 (diff)
download: gitlab-ce-8af8da09d0d25d25b5977b7c74da364e6fbec5fa.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/doc/user/gitlab_com/index.md b/doc/user/gitlab_com/index.md
index af37cc896ad..8f1048260f2 100644
--- a/doc/user/gitlab_com/index.md
+++ b/doc/user/gitlab_com/index.md
@@ -314,7 +314,7 @@ Source:
 
 #### Git and container registry failed authentication ban
 
-GitLab.com responds with HTTP status code 403 for 1 hour, if 30 failed
+GitLab.com responds with HTTP status code `403` for 1 hour, if 30 failed
 authentication requests were received in a 3-minute period from a single IP address.
 
 This applies only to Git requests and container registry (`/jwt/auth`) requests
@@ -324,6 +324,8 @@ This limit is reset by requests that authenticate successfully. For example, 29
 failed authentication requests followed by 1 successful request, followed by 29
 more failed authentication requests would not trigger a ban.
 
+JWT requests authenticated by gitlab-ci-token are excluded from this limit.
+
 No response headers are provided.
 
 ### Admin Area settings
author	Michael Kozono <mkozono@gmail.com>	2019-08-23 12:52:53 -0700
committer	Michael Kozono <mkozono@gmail.com>	2019-08-23 12:52:53 -0700
commit	8af8da09d0d25d25b5977b7c74da364e6fbec5fa (patch)
tree	1473c344b7ee0d4c79b19c2fad03b0773ac5e3dc /doc/user
parent	24ff249ded4bc2098e590d1f3605a3ebe3954723 (diff)
download	gitlab-ce-8af8da09d0d25d25b5977b7c74da364e6fbec5fa.tar.gz