Rack::Attack should treat /oauth endpoints as API endpoints
/oauth/*
endpoint are not covered by Rack::Attack
because only paths starting with api
are considered API endpoint.
Proposal: OAuth endpoints should be considered API endpoints.
/oauth/*
endpoint are not covered by Rack::Attack
because only paths starting with api
are considered API endpoint.
Proposal: OAuth endpoints should be considered API endpoints.