api-layer icon indicating copy to clipboard operation
api-layer copied to clipboard
verified publisher icon zowe

API Rate Limiting

Open balhar-jakub opened this issue 3 years ago • 3 comments

Use Cases

As a System Administrator, I want to limit access to the downstream services on the API Mediation Layer before requests reach southbound services.

Technical Requirements

  • The minimum is to set on API ML instance limit of connections for all services.
    • Document Spring Cloud Gateway approach.
  • Possible extension to allow the limitation of connection per service.
    • To be discussed with stakeholders
  • Explore the option of supporting rate limiting in Zuul
    • The decision is that we won't implement the API Rate Limiting in Zuul.

Notes

  • We want to prevent overloading services on the southbound side as they may take relevant zOS resources.
  • We want to prevent DDoS attacks on the zOS service.

balhar-jakub avatar May 17 '22 11:05 balhar-jakub

Potential approach for the ZUUL https://www.baeldung.com/spring-cloud-zuul-rate-limit

balhar-jakub avatar May 18 '22 14:05 balhar-jakub

@balhar-jakub Given that the Spike recommended we do not implement this in ZUUL but instead deliver it as part of the SCG roll out (natively), does this then become simply a documentation epic to highlight this function in SCG?

jalel01 avatar Nov 25 '22 11:11 jalel01

@jalel01 There is one more note to discuss. We want to document the setup per Gateway, we will need to clarify with the users whether there is value in the services being able to set their custom limits.

If the users see value in the per-service setting, we may need to do some implementation.

balhar-jakub avatar Nov 28 '22 09:11 balhar-jakub