Page MenuHomePhabricator
Create Task
Maniphest T406477

Ensure rate limiting is in place for GraphQL requests
Closed, ResolvedPublic5 Estimated Story Points
Actions

Description

Use rate limiting rules as set in the Wikibase REST API and the Action API. For now, these are applied across the board and there are no exceptions for authenticated requests, if there is a need for it later, we can add it.

Related Objects

Event Timeline

Jakob_WMDE created this task.Oct 6 2025, 10:36 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptOct 6 2025, 10:36 AM
Maintenance_bot added a project: Wikidata.Oct 6 2025, 11:30 AM
Ifrahkhanyaree_WMDE updated the task description. (Show Details)Nov 18 2025, 9:12 AM
Ifrahkhanyaree_WMDE updated the task description. (Show Details)Nov 18 2025, 9:20 AM
Ifrahkhanyaree_WMDE moved this task from Backlog to Polished on the Wikibase Reuse Team board.
WMDE-leszek set the point value for this task to 5.Dec 16 2025, 9:47 AM
WMDE-leszek moved this task from Polished to Ready for planning on the Wikibase Reuse Team board.
Ifrahkhanyaree_WMDE moved this task from Ready for planning to Sprint 60 on the Wikibase Reuse Team board.Jan 6 2026, 9:39 AM
Ifrahkhanyaree_WMDE edited projects, added Wikibase Reuse Team (Sprint 60); removed Wikibase Reuse Team.
Jakob_WMDE claimed this task.Jan 7 2026, 9:02 AM
Jakob_WMDE moved this task from To Do to Doing on the Wikibase Reuse Team (Sprint 60) board.
Jakob_WMDE moved this task from Doing to Peer Review on the Wikibase Reuse Team (Sprint 60) board.Jan 7 2026, 3:29 PM

It seems that there aren't any limits for read-only requests in mediawiki. Rate limiting only applies to edit requests, and the corresponding ticket for the REST API (T366594) also only talks about limits for edit requests and temp user creations.

https://www.mediawiki.org/wiki/API:Etiquette#Request_limit says

There is no hard speed limit on read requests, but be considerate and try not to take a site down. [...] Requests which make edits, modify state or otherwise are not read-only requests, are subject to rate limiting.

TL;DR nothing to do here since our GraphQL API is read-only!?

Ifrahkhanyaree_WMDE moved this task from Backlog to Happening now on the Wikibase GraphQL board.Mon, Jan 12, 2:00 PM
Dima_Koushha_WMDE subscribed.Tue, Jan 20, 8:32 AM

Thanks for looking into this.

Moving the ticket to done since no action is needed here.

Dima_Koushha_WMDE moved this task from Peer Review to Done on the Wikibase Reuse Team (Sprint 60) board.Tue, Jan 20, 8:32 AM
Ifrahkhanyaree_WMDE closed this task as Resolved.Tue, Jan 20, 10:34 AM
Ifrahkhanyaree_WMDE moved this task from Happening now to Done on the Wikibase GraphQL board.Thu, Jan 22, 3:42 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits