CE Port: Add request rate limits
What does this MR do?
Adds configurable rate limits for authenticated web requests (per user), authenticated API requests (per user), and unauthenticated requests (per IP).
Why was this MR needed?
To mitigate excessive requests from abusive clients.
Does this MR meet the acceptance criteria?
-
Changelog entry added, if necessary -
Documentation created/updated -
API support added -
Tests added for this feature/bug - Review
-
Has been reviewed by UX -
Has been reviewed by Frontend -
Has been reviewed by Backend -
Has been reviewed by Database
-
-
Conform by the merge request performance guides -
Conform by the style guides -
Squashed related commits together -
Internationalization required/considered -
If paid feature, have we considered GitLab.com plan and how it works for groups and is there a design for promoting it to users who aren't on the correct plan
What are the relevant issue numbers?
gitlab-org/gitlab-ce#30053