Inicio Explorar Axuda
Iniciar sesión
lenn
/
grpc1.45.2
1
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: bef6e57d0d
Ramas Etiquetas
grpc1.45.2
/
third_party
/
envoy-api
/
envoy
/
api
/
v2
/
ratelimit
/
ratelimit.proto

ratelimit.proto 2.6 KB
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970 
  1. syntax = "proto3";
    2. 

  2. 

  3. package envoy.api.v2.ratelimit;
    4. 

  4. 

  5. import "udpa/annotations/migrate.proto";
    6. 

  6. import "udpa/annotations/status.proto";
    7. 

  7. import "validate/validate.proto";
    8. 

  8. 

  9. option java_package = "io.envoyproxy.envoy.api.v2.ratelimit";
    10. 

  10. option java_outer_classname = "RatelimitProto";
    11. 

  11. option java_multiple_files = true;
    12. 

  12. option go_package = "github.com/envoyproxy/go-control-plane/envoy/api/v2/ratelimit";
    13. 

  13. option (udpa.annotations.file_migrate).move_to_package = "envoy.extensions.common.ratelimit.v3";
    14. 

  14. option (udpa.annotations.file_status).package_version_status = FROZEN;
    15. 

  15. 

  16. // [#protodoc-title: Common rate limit components]
    17. 

  17. 

  18. // A RateLimitDescriptor is a list of hierarchical entries that are used by the service to
    19. 

  19. // determine the final rate limit key and overall allowed limit. Here are some examples of how
    20. 

  20. // they might be used for the domain "envoy".
    21. 

  21. //
    22. 

  22. // .. code-block:: cpp
    23. 

  23. //
    24. 

  24. //   ["authenticated": "false"], ["remote_address": "10.0.0.1"]
    25. 

  25. //
    26. 

  26. // What it does: Limits all unauthenticated traffic for the IP address 10.0.0.1. The
    27. 

  27. // configuration supplies a default limit for the *remote_address* key. If there is a desire to
    28. 

  28. // raise the limit for 10.0.0.1 or block it entirely it can be specified directly in the
    29. 

  29. // configuration.
    30. 

  30. //
    31. 

  31. // .. code-block:: cpp
    32. 

  32. //
    33. 

  33. //   ["authenticated": "false"], ["path": "/foo/bar"]
    34. 

  34. //
    35. 

  35. // What it does: Limits all unauthenticated traffic globally for a specific path (or prefix if
    36. 

  36. // configured that way in the service).
    37. 

  37. //
    38. 

  38. // .. code-block:: cpp
    39. 

  39. //
    40. 

  40. //   ["authenticated": "false"], ["path": "/foo/bar"], ["remote_address": "10.0.0.1"]
    41. 

  41. //
    42. 

  42. // What it does: Limits unauthenticated traffic to a specific path for a specific IP address.
    43. 

  43. // Like (1) we can raise/block specific IP addresses if we want with an override configuration.
    44. 

  44. //
    45. 

  45. // .. code-block:: cpp
    46. 

  46. //
    47. 

  47. //   ["authenticated": "true"], ["client_id": "foo"]
    48. 

  48. //
    49. 

  49. // What it does: Limits all traffic for an authenticated client "foo"
    50. 

  50. //
    51. 

  51. // .. code-block:: cpp
    52. 

  52. //
    53. 

  53. //   ["authenticated": "true"], ["client_id": "foo"], ["path": "/foo/bar"]
    54. 

  54. //
    55. 

  55. // What it does: Limits traffic to a specific path for an authenticated client "foo"
    56. 

  56. //
    57. 

  57. // The idea behind the API is that (1)/(2)/(3) and (4)/(5) can be sent in 1 request if desired.
    58. 

  58. // This enables building complex application scenarios with a generic backend.
    59. 

  59. message RateLimitDescriptor {
    60. 

  60.   message Entry {
    61. 

  61.     // Descriptor key.
    62. 

  62.     string key = 1 [(validate.rules).string = {min_bytes: 1}];
    63. 

  63. 

  64.     // Descriptor value.
    65. 

  65.     string value = 2 [(validate.rules).string = {min_bytes: 1}];
    66. 

  66.   }
    67. 

  67. 

  68.   // Descriptor entries.
    69. 

  69.   repeated Entry entries = 1 [(validate.rules).repeated = {min_items: 1}];
    70. 

  70. }
    71.