Page MenuHomePhabricator
Create Task
Maniphest T408132

api-gateway chart: support rate limits for multiple time units
Closed, ResolvedPublic
Actions

Description

It should be possible to configure separate limits per second, minute, and hour (and maybe also per day). This can be achieved by specifying the time unit as a key in the rate limit descriptor. In the values file, the structure of the rate limit definition would change as follows:


#OLD
    #anon_limit:
     # requests_per_unit: 500
     # unit: HOUR
    #default_limit:
     # requests_per_unit: 5000
     # unit: HOUR

#NEW
    anon_limit:
       HOUR: 500
       MINUTE: 50
    default_limit:
       HOUR: 5000
       MINUTE: 500

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
rest-gateway: allow rate limits per time unitoperations/deployment-chartsmaster+101 -56
Customize query in gerrit

Related Objects
Search...

Event Timeline

daniel created this task.Oct 23 2025, 3:10 PM
daniel edited parent tasks, added: T399291: Epic: API Rate Limiting Architecture; removed: T408130: api-gateway chart: support secondary rate limit.Oct 23 2025, 3:26 PM
daniel added subscribers: akosiaris, Joe.EditedOct 23 2025, 6:40 PM

@HCoplin-WMF @JTweed-WMF I filed this task because I expect that we will need this ability, but if you tell me that we don't, it makes my life easier...

For the per-second limits, keep in mind that we use them as a stand-in for proper concurrency control. Perhaps @Joe or @akosiaris can say how important that is, given that we already have per-IP limits enforced at the edge.

FWIW, implementing this adds complexity to the configuration, but not a terrible lot.

BPirkle moved this task from Incoming (Needs Triage) to Radar (other teams work) on the MW-Interfaces-Team board.Oct 23 2025, 8:38 PM
daniel mentioned this in T408183: api-gateway chart: metrics mapping for rerst-gateway.Oct 24 2025, 9:48 AM
JTweed-WMF moved this task from Inbox, needs triage to Next (DO NOT USE) on the MediaWiki-Platform-Team board.Oct 30 2025, 3:30 PM
daniel mentioned this in T405544: Add support for rate limiting rest gateway routes to api-gateway helm chart.Oct 30 2025, 5:44 PM
daniel added a comment.Thu, Nov 13, 10:36 AM

We currently have hourly limits in place that would potentially cause load spikes at the beginning of each hour:

grafik.png (409×821 px, 63 KB)

The graph shows the number of "over limit" requests dropping at the start of every hour. Once we start enforcing limits, that means that the number of "within limit" requests will be highest at the start of the hour.

JTweed-WMF added a comment.Fri, Nov 14, 11:27 AM

I think that this proves we should try a requests/second or requests/minute limit, to try and smooth out usage and avoid a spike every hour.

My hunch is that this is not just the hourly limit evenly spread, we need to give people the ability to burst to some degree.

I'd like to try a few requests/second limit, to see where we should set it. Something in the region of 5-15rps as a test?

gerritbot added a comment.Fri, Nov 14, 4:40 PM

Change #1205191 had a related patch set uploaded (by Daniel Kinzler; author: Daniel Kinzler):

[operations/deployment-charts@master] WIP: rest-gateway: allow rate limits per time unit

https://gerrit.wikimedia.org/r/1205191

gerritbot added a project: Patch-For-Review.Fri, Nov 14, 4:40 PM
OWresch-WMF edited projects, added MediaWiki-Platform-Team (Kanban Board); removed MediaWiki-Platform-Team.Fri, Nov 21, 11:39 AM
gerritbot added a comment.Mon, Nov 24, 11:01 AM

Change #1205191 merged by jenkins-bot:

[operations/deployment-charts@master] rest-gateway: allow rate limits per time unit

https://gerrit.wikimedia.org/r/1205191

Maintenance_bot removed a project: Patch-For-Review.Mon, Nov 24, 11:30 AM
daniel closed this task as Resolved.Mon, Nov 24, 5:37 PM
daniel claimed this task.

Deployed and tested. We still only use per-hour limits in production though.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits