| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2018-01-09 | Increase rate limit on protected paths (#6229) | Eugen Rochko | |
| Previously each protected path had a separate rate limit. Now they're all in the same bucket, so people are more likely to hit one with register->login. Increasing to 25 per 5 minutes should be fine. | |||
| 2017-12-11 | Apply a 25x rate limit by IP even to authenticated requests (#5948) | Eugen Rochko | |
| 2017-12-09 | Missing require 'authorization_decorator'. (#5947) | Naoki Kosaka | |
| 2017-12-09 | Rate limit by user instead of IP when API user is authenticated (#5923) | Eugen Rochko | |
| * Fix #668 - Rate limit by user instead of IP when API user is authenticated * Fix code style issue * Use request decorator provided by Doorkeeper | |||
| 2017-08-08 | Add Content-Type header on throttled response to fix mojibake (#4558) | unarist | |
| application/json only allows Unicode, so this prevents from wrong charset detection. | |||
| 2017-05-03 | Localize 'throttled' (#2755) | alpaca-tc | |
| 2017-04-30 | allow localhost to bypass the ratelimit (#2554) | Tristan Mahé | |
| 2017-04-18 | Add rate limits for logins and sign-ups by IP (5 in 5 minutes) (#2079) | Eugen | |
| * Add rate limits for logins and sign-ups by IP (5 in 5 minutes) Should be enough for normal attempts * Add rate limit for forgotten password form as well | |||
 |
index : mastodon | |
| Plural Café fork of Mastodon/Glitch Social |
| about summary refs log tree commit diff |