extern/nixos-wiki-infra
1
0
Fork 1
mirror of https://github.com/Mic92/nixos-wiki-infra.git synced 2025-06-26 12:41:34 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #169 from NixOS/rate-limit

Browse Source 
rate limit wiki
This commit is contained in:
Jörg Thalheim 2025-01-04 11:25:09 +01:00 committed by GitHub
commit 590fa23064
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
modules/nixos-wiki/default.nix
View File

@ -217,9 +217,16 @@ in
80 80
]; ];
security.acme.acceptTerms = true; security.acme.acceptTerms = true;
services.nginx.appendHttpConfig = ''
limit_req_zone $binary_remote_addr zone=ip:20m rate=5r/s;
limit_req_status 429;
'';
services.nginx.virtualHosts.${config.services.mediawiki.nginx.hostName} = { services.nginx.virtualHosts.${config.services.mediawiki.nginx.hostName} = {
enableACME = lib.mkDefault true; enableACME = lib.mkDefault true;
forceSSL = lib.mkDefault true; forceSSL = lib.mkDefault true;
extraConfig = ''
limit_req zone=ip burst=20 nodelay;
'';
locations."=/nixos.png".alias = ./nixos.png; locations."=/nixos.png".alias = ./nixos.png;
locations."=/favicon.ico".alias = ./favicon.ico; locations."=/favicon.ico".alias = ./favicon.ico;
locations."=/robots.txt".alias = ./robots.txt; locations."=/robots.txt".alias = ./robots.txt;