Support setting rate limits based on x-trusted-request headers coming from the edge.
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	daniel
	Nov 18 2025, 10:43 AM

Description

This would be especially useful for identifying requests from "trusted bots" ("good scrapers") and from WMCS.

Related Changes in Gerrit:

	Subject	Repo	Branch	Lines +/-
	rest gateway: split anon class	operations/deployment-charts	master	+216 -18
	rest gateway: use the new x-trusted-request header	operations/deployment-charts	master	+71 -10

Status	Assigned	Task
Open	None	T399291 Epic: API Rate Limiting Architecture
Open	None	T412585 Epic: Enforce API rate limits (WE5.1.3c)
Open	daniel	T398919 Epic: API rate limiting dry run (WE5.1.3b)
Resolved	daniel	T410379 Support setting rate limits based on x-trusted-request headers coming from the edge.

Change #1214633 had a related patch set uploaded (by Daniel Kinzler; author: Daniel Kinzler):

[operations/deployment-charts@master] rest gateway: use the new x-trusted-request header

Change #1214633 merged by jenkins-bot:

[operations/deployment-charts@master] rest gateway: use the new x-trusted-request header

daniel closed this task as Resolved.Dec 4 2025, 1:36 PM

Change #1217516 had a related patch set uploaded (by Daniel Kinzler; author: Daniel Kinzler):

[operations/deployment-charts@master] rest gateway: split anon class

Change #1217516 merged by jenkins-bot:

[operations/deployment-charts@master] rest gateway: split anon class