Double requests/sec limit; update docs
This commit is contained in:
		
							parent
							
								
									2ad0802b65
								
							
						
					
					
						commit
						eed233a793
					
				
					 4 changed files with 25 additions and 19 deletions
				
			
		|  | @ -588,11 +588,13 @@ This limit uses a [token bucket](https://en.wikipedia.org/wiki/Token_bucket) (us | |||
| 
 | ||||
| Each visitor has a bucket of 60 requests they can fire against the server (defined by `visitor-request-limit-burst`).  | ||||
| After the 60, new requests will encounter a `429 Too Many Requests` response. The visitor request bucket is refilled at a rate of one | ||||
| request every 10s (defined by `visitor-request-limit-replenish`) | ||||
| request every 5s (defined by `visitor-request-limit-replenish`) | ||||
| 
 | ||||
| * `visitor-request-limit-burst` is the initial bucket of requests each visitor has. This defaults to 60. | ||||
| * `visitor-request-limit-replenish` is the rate at which the bucket is refilled (one request per x). Defaults to 10s. | ||||
| 
 | ||||
| * `visitor-request-limit-replenish` is the rate at which the bucket is refilled (one request per x). Defaults to 5s. | ||||
| * `visitor-request-limit-exempt-hosts` is a comma-separated list of hostnames and IPs to be exempt from request rate  | ||||
|   limiting; hostnames are resolved at the time the server is started. Defaults to an empty list. | ||||
|   | ||||
| ### Attachment limits | ||||
| Aside from the global file size and total attachment cache limits (see [above](#attachments)), there are two relevant  | ||||
| per-visitor limits: | ||||
|  | @ -747,7 +749,8 @@ variable before running the `ntfy` command (e.g. `export NTFY_LISTEN_HTTP=:80`). | |||
| | `visitor-attachment-total-size-limit`      | `NTFY_VISITOR_ATTACHMENT_TOTAL_SIZE_LIMIT`      | *size*                                              | 100M    | Rate limiting: Total storage limit used for attachments per visitor, for all attachments combined. Storage is freed after attachments expire. See `attachment-expiry-duration`.                                                 | | ||||
| | `visitor-attachment-daily-bandwidth-limit` | `NTFY_VISITOR_ATTACHMENT_DAILY_BANDWIDTH_LIMIT` | *size*                                              | 500M    | Rate limiting: Total daily attachment download/upload traffic limit per visitor. This is to protect your bandwidth costs from exploding.                                                                                        | | ||||
| | `visitor-request-limit-burst`              | `NTFY_VISITOR_REQUEST_LIMIT_BURST`              | *number*                                            | 60      | Rate limiting: Allowed GET/PUT/POST requests per second, per visitor. This setting is the initial bucket of requests each visitor has                                                                                           | | ||||
| | `visitor-request-limit-replenish`          | `NTFY_VISITOR_REQUEST_LIMIT_REPLENISH`          | *duration*                                          | 10s     | Rate limiting: Strongly related to `visitor-request-limit-burst`: The rate at which the bucket is refilled                                                                                                                      | | ||||
| | `visitor-request-limit-replenish`          | `NTFY_VISITOR_REQUEST_LIMIT_REPLENISH`          | *duration*                                          | 5s      | Rate limiting: Strongly related to `visitor-request-limit-burst`: The rate at which the bucket is refilled                                                                                                                      | | ||||
| | `visitor-request-limit-exempt-hosts`       | `NTFY_VISITOR_REQUEST_LIMIT_EXEMPT_HOSTS`       | *comma-separated host/IP list*                      | -       | Rate limiting: List of hostnames and IPs to be exempt from request rate limiting                                                                                                                                                | | ||||
| | `visitor-email-limit-burst`                | `NTFY_VISITOR_EMAIL_LIMIT_BURST`                | *number*                                            | 16      | Rate limiting:Initial limit of e-mails per visitor                                                                                                                                                                              | | ||||
| | `visitor-email-limit-replenish`            | `NTFY_VISITOR_EMAIL_LIMIT_REPLENISH`            | *duration*                                          | 1h      | Rate limiting: Strongly related to `visitor-email-limit-burst`: The rate at which the bucket is refilled                                                                                                                        | | ||||
| 
 | ||||
|  | @ -776,7 +779,6 @@ DESCRIPTION: | |||
|      ntfy serve                      # Starts server in the foreground (on port 80) | ||||
|      ntfy serve --listen-http :8080  # Starts server with alternate port | ||||
| 
 | ||||
| OPTIONS: | ||||
|    --config value, -c value                          config file (default: /etc/ntfy/server.yml) [$NTFY_CONFIG_FILE] | ||||
|    --base-url value, -B value                        externally visible base URL for this host (e.g. https://ntfy.sh) [$NTFY_BASE_URL] | ||||
|    --listen-http value, -l value                     ip:port used to as HTTP listen address (default: ":80") [$NTFY_LISTEN_HTTP] | ||||
|  | @ -807,7 +809,8 @@ OPTIONS: | |||
|    --visitor-attachment-total-size-limit value       total storage limit used for attachments per visitor (default: "100M") [$NTFY_VISITOR_ATTACHMENT_TOTAL_SIZE_LIMIT] | ||||
|    --visitor-attachment-daily-bandwidth-limit value  total daily attachment download/upload bandwidth limit per visitor (default: "500M") [$NTFY_VISITOR_ATTACHMENT_DAILY_BANDWIDTH_LIMIT] | ||||
|    --visitor-request-limit-burst value               initial limit of requests per visitor (default: 60) [$NTFY_VISITOR_REQUEST_LIMIT_BURST] | ||||
|    --visitor-request-limit-replenish value           interval at which burst limit is replenished (one per x) (default: 10s) [$NTFY_VISITOR_REQUEST_LIMIT_REPLENISH] | ||||
|    --visitor-request-limit-replenish value           interval at which burst limit is replenished (one per x) (default: 5s) [$NTFY_VISITOR_REQUEST_LIMIT_REPLENISH] | ||||
|    --visitor-request-limit-exempt-hosts value        hostnames and/or IP addresses of hosts that will be exempt from the visitor request limit [$NTFY_VISITOR_REQUEST_LIMIT_EXEMPT_HOSTS] | ||||
|    --visitor-email-limit-burst value                 initial limit of e-mails per visitor (default: 16) [$NTFY_VISITOR_EMAIL_LIMIT_BURST] | ||||
|    --visitor-email-limit-replenish value             interval at which burst limit is replenished (one per x) (default: 1h0m0s) [$NTFY_VISITOR_EMAIL_LIMIT_REPLENISH] | ||||
|    --behind-proxy, -P                                if set, use X-Forwarded-For header to determine visitor IP address (for rate limiting) (default: false) [$NTFY_BEHIND_PROXY] | ||||
|  |  | |||
|  | @ -1191,16 +1191,16 @@ There are a few limitations to the API to prevent abuse and to keep the server h | |||
| are configurable via the server side [rate limiting settings](config.md#rate-limiting). Most of these limits you won't run into, | ||||
| but just in case, let's list them all: | ||||
| 
 | ||||
| | Limit                      | Description                                                                                                                                                               | | ||||
| |----------------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------| | ||||
| | **Message length**         | Each message can be up to 4,096 bytes long. Longer messages are treated as [attachments](#attachments).                                                                   | | ||||
| | **Requests**               | By default, the server is configured to allow 60 requests per visitor at once, and then refills the your allowed requests bucket at a rate of one request per 10 seconds. | | ||||
| | **E-mails**                | By default, the server is configured to allow sending 16 e-mails per visitor at once, and then refills the your allowed e-mail bucket at a rate of one per hour.          | | ||||
| | **Subscription limit**     | By default, the server allows each visitor to keep 30 connections to the server open.                                                                                     | | ||||
| | **Attachment size limit**  | By default, the server allows attachments up to 15 MB in size, up to 100 MB in total per visitor and up to 5 GB across all visitors.                                      | | ||||
| | **Attachment expiry**      | By default, the server deletes attachments after 3 hours and thereby frees up space from the total visitor attachment limit.                                              | | ||||
| | **Attachment bandwidth**   | By default, the server allows 500 MB of GET/PUT/POST traffic for attachments per visitor in a 24 hour period. Traffic exceeding that is rejected.                         | | ||||
| | **Total number of topics** | By default, the server is configured to allow 15,000 topics. The ntfy.sh server has higher limits though.                                                                 | | ||||
| | Limit                      | Description                                                                                                                                                              | | ||||
| |----------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------| | ||||
| | **Message length**         | Each message can be up to 4,096 bytes long. Longer messages are treated as [attachments](#attachments).                                                                  | | ||||
| | **Requests**               | By default, the server is configured to allow 60 requests per visitor at once, and then refills the your allowed requests bucket at a rate of one request per 5 seconds. | | ||||
| | **E-mails**                | By default, the server is configured to allow sending 16 e-mails per visitor at once, and then refills the your allowed e-mail bucket at a rate of one per hour.         | | ||||
| | **Subscription limit**     | By default, the server allows each visitor to keep 30 connections to the server open.                                                                                    | | ||||
| | **Attachment size limit**  | By default, the server allows attachments up to 15 MB in size, up to 100 MB in total per visitor and up to 5 GB across all visitors.                                     | | ||||
| | **Attachment expiry**      | By default, the server deletes attachments after 3 hours and thereby frees up space from the total visitor attachment limit.                                             | | ||||
| | **Attachment bandwidth**   | By default, the server allows 500 MB of GET/PUT/POST traffic for attachments per visitor in a 24 hour period. Traffic exceeding that is rejected.                        | | ||||
| | **Total number of topics** | By default, the server is configured to allow 15,000 topics. The ntfy.sh server has higher limits though.                                                                | | ||||
| 
 | ||||
| ## List of all parameters | ||||
| The following is a list of all parameters that can be passed when publishing a message. Parameter names are **case-insensitive**, | ||||
|  |  | |||
|  | @ -30,14 +30,14 @@ const ( | |||
| 
 | ||||
| // Defines all per-visitor limits | ||||
| // - per visitor subscription limit: max number of subscriptions (active HTTP connections) per per-visitor/IP | ||||
| // - per visitor request limit: max number of PUT/GET/.. requests (here: 60 requests bucket, replenished at a rate of one per 10 seconds) | ||||
| // - per visitor request limit: max number of PUT/GET/.. requests (here: 60 requests bucket, replenished at a rate of one per 5 seconds) | ||||
| // - per visitor email limit: max number of emails (here: 16 email bucket, replenished at a rate of one per hour) | ||||
| // - per visitor attachment size limit: total per-visitor attachment size in bytes to be stored on the server | ||||
| // - per visitor attachment daily bandwidth limit: number of bytes that can be transferred to/from the server | ||||
| const ( | ||||
| 	DefaultVisitorSubscriptionLimit             = 30 | ||||
| 	DefaultVisitorRequestLimitBurst             = 60 | ||||
| 	DefaultVisitorRequestLimitReplenish         = 10 * time.Second | ||||
| 	DefaultVisitorRequestLimitReplenish         = 5 * time.Second | ||||
| 	DefaultVisitorEmailLimitBurst               = 16 | ||||
| 	DefaultVisitorEmailLimitReplenish           = time.Hour | ||||
| 	DefaultVisitorAttachmentTotalSizeLimit      = 100 * 1024 * 1024 // 100 MB | ||||
|  |  | |||
|  | @ -137,9 +137,12 @@ | |||
| # Rate limiting: Allowed GET/PUT/POST requests per second, per visitor: | ||||
| # - visitor-request-limit-burst is the initial bucket of requests each visitor has | ||||
| # - visitor-request-limit-replenish is the rate at which the bucket is refilled | ||||
| # - visitor-request-limit-exempt-hosts is a comma-separated list of hostnames and IPs to be | ||||
| #   exempt from request rate limiting; hostnames are resolved at the time the server is started | ||||
| # | ||||
| # visitor-request-limit-burst: 60 | ||||
| # visitor-request-limit-replenish: "10s" | ||||
| # visitor-request-limit-replenish: "5s" | ||||
| # visitor-request-limit-exempt-hosts: "" | ||||
| 
 | ||||
| # Rate limiting: Allowed emails per visitor: | ||||
| # - visitor-email-limit-burst is the initial bucket of emails each visitor has | ||||
|  |  | |||
		Loading…
	
	Add table
		Add a link
		
	
		Reference in a new issue