[
https://issues.apache.org/jira/browse/CLOUDSTACK-618?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13530210#comment-13530210
]
Chip Childers commented on CLOUDSTACK-618:
------------------------------------------
Done properly, this needs to be coordinated across multiple management servers
supporting a zone. Also, it probably needs to be configurable with a default
and override for specific accounts or api keys.
> API request throttling to avoid malicious attacks on MS per account through
> frequent API request.
> -------------------------------------------------------------------------------------------------
>
> Key: CLOUDSTACK-618
> URL: https://issues.apache.org/jira/browse/CLOUDSTACK-618
> Project: CloudStack
> Issue Type: New Feature
> Security Level: Public(Anyone can view this level - this is the
> default.)
> Components: API
> Affects Versions: pre-4.0.0, 4.0.0
> Reporter: Min Chen
> Assignee: Min Chen
> Fix For: 4.1.0
>
>
> We should limit number of APIs placed per second for one account to avoid
> malicious attacks on our management server and provide fairness to all CS
> accounts.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
