[CONFSERVER-81850] Internal APIs Rate Limiting

Type: Suggestion
Resolution: Unresolved
Fix Version/s: None
Component/s: Server - Administration
Labels:
None

Feedback Policy:

We collect Confluence feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

We have the below documentation for rate limiting on how can we control and how many external REST API requests automations and users can make and how often they can make them, making sure that your Confluence instance remains stable.

Improving instance stability with rate limiting
Rate limiting targets only external REST API requests, which means that requests made within Confluence aren't limited in any way.

For example, it was observed that the email service which sends email notifications to confluence users doesn't not implement throttling mechanisms. User could leverage the "access request" functionality to flood the target user, which owns the space, with a high volume of emails by sending many "request access" requests.

mentioned in: Page Failed to load

There are no comments yet on this issue.

Assignee:: Unassigned

Reporter:: Shekhar Gupta

Votes:: 2 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 25/Jan/2023 3:57 AM

Updated:: 03/Oct/2024 4:48 AM

Confluence Data Center

Details

Description

Attachments

Issue Links

Forms

Activity

People

Dates