Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ratelimit: be able to disable x-envoy-ratelimited response header sent #13270

Merged
merged 11 commits into from
Oct 14, 2020
Merged

ratelimit: be able to disable x-envoy-ratelimited response header sent #13270

merged 11 commits into from
Oct 14, 2020

Conversation

andrascz
Copy link
Contributor

Commit Message: make emitting of the X-Envoy-RateLimited header configurable

Signed-off-by: András Czigány andras.czigany@strivacity.com

Additional Description:
Risk Level: Low
Testing: unit and integration tests
Docs Changes: proto and current changelog
Release Notes: N/A see docs above

@repokitteh-read-only
Copy link

CC @envoyproxy/api-shepherds: Your approval is needed for changes made to api/envoy/.
CC @envoyproxy/api-watchers: FYI only for changes made to api/envoy/.

🐱

Caused by: #13270 was opened by andrascz.

see: more, trace.

@andrascz
ratelimit: be able to disable x-envoy-ratelimited response header sen…
4ced31a 
…t in case of ratelimited request

Signed-off-by: András Czigány <andras.czigany@strivacity.com>
htuch
htuch reviewed Sep 25, 2020
View reviewed changes
Copy link
Member

@htuch htuch left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

API shepherd review

api/envoy/extensions/filters/http/ratelimit/v3/rate_limit.proto Outdated Show resolved Hide resolved
api/envoy/extensions/filters/http/ratelimit/v3/rate_limit.proto Outdated Show resolved Hide resolved
@andrascz
fixup! ratelimit: be able to disable x-envoy-ratelimited response hea…
c559c74 
…der sent in case of ratelimited request

Signed-off-by: András Czigány <andras.czigany@strivacity.com>
@junr03
Copy link
Member

junr03 commented Sep 29, 2020

@andrascz do you mind merging master, the test failure should go away if you do so.

junr03
junr03 reviewed Sep 29, 2020
View reviewed changes
Copy link
Member

@junr03 junr03 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

mostly lgtm, just a docs question

api/envoy/extensions/filters/http/ratelimit/v3/rate_limit.proto Show resolved Hide resolved
@junr03
Copy link
Member

junr03 commented Sep 29, 2020

/wait

@numerodix
Copy link
Contributor

@andrascz do you mind if I ask what your use case is for this change?
Is it to enable retries for rate limited responses or is it something else?

@andrascz
fixup! fixup! ratelimit: be able to disable x-envoy-ratelimited respo…
10fa1d4 
…nse header sent in case of ratelimited request

Signed-off-by: András Czigány <andras.czigany@strivacity.com>
@andrascz
Merge branch 'master' of github.com:envoyproxy/envoy into disable-x-e…
9da7e10 
…nvoy-ratelimited-header

Signed-off-by: András Czigány <andras.czigany@strivacity.com>
@andrascz
Copy link
Contributor Author

andrascz commented Sep 30, 2020
edited
Loading

@numerodix Our use case is that currently we are rate limiting on our Istio ingressgateway which handles our public production traffic and we do not want to send this header outside of the cluster. As the 429 response is a local reply and ResponseMapper does not have any options to remove a header, it seems the easiest way to achieve this.

@andrascz
fixup! fixup! fixup! ratelimit: be able to disable x-envoy-ratelimite…
a788708 
…d response header sent in case of ratelimited request

Signed-off-by: András Czigány <andras.czigany@strivacity.com>
@junr03
Copy link
Member

junr03 commented Oct 7, 2020

@numerodix any additional comments here? Were you asking out of curiosity?

/wait-any

@numerodix
Copy link
Contributor

numerodix commented Oct 8, 2020
edited
Loading

@numerodix any additional comments here? Were you asking out of curiosity?

@junr03 Was asking out of curiosity, yes. :)

@andrascz
Merge branch 'master' of github.com:envoyproxy/envoy into disable-x-e…
b0a4948 
…nvoy-ratelimited-header

Signed-off-by: András Czigány <andras.czigany@strivacity.com>
@andrascz
current.rst: fix after 1.16.0 release
f63fd50 
Signed-off-by: András Czigány <andras.czigany@strivacity.com>
@andrascz
ratelimit_test.cc: fix limit() signature
f4ef79e 
Signed-off-by: András Czigány <andras.czigany@strivacity.com>
@andrascz andrascz requested a review from junr03 October 9, 2020 13:47
@andrascz
Merge branch 'master' of github.com:envoyproxy/envoy into disable-x-e…
05c2433 
…nvoy-ratelimited-header

Signed-off-by: András Czigány <andras.czigany@strivacity.com>
@andrascz
curent.rst: fix after pulling master
d750eb7 
Signed-off-by: András Czigány <andras.czigany@strivacity.com>
junr03
junr03 previously approved these changes Oct 13, 2020
View reviewed changes
mattklein123
mattklein123 previously approved these changes Oct 14, 2020
View reviewed changes
Copy link
Member

@mattklein123 mattklein123 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

API LGTM

@mattklein123
Copy link
Member

Oops needs a main merge.

/wait

@mattklein123 mattklein123 self-assigned this Oct 14, 2020
@andrascz
Merge branch 'master' of github.com:envoyproxy/envoy into disable-x-e…
8f4a334 
…nvoy-ratelimited-header

Signed-off-by: András Czigány <andras.czigany@strivacity.com>
@andrascz andrascz dismissed stale reviews from mattklein123 and junr03 via 8f4a334 October 14, 2020 06:46
mattklein123
mattklein123 approved these changes Oct 14, 2020
View reviewed changes
Copy link
Member

@mattklein123 mattklein123 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks!

@mattklein123 mattklein123 merged commit dc3460c into envoyproxy:master Oct 14, 2020
mpuncel added a commit to mpuncel/envoy that referenced this pull request Oct 15, 2020
@mpuncel
Merge branch 'master' into mpuncel/secret-hc-sequence
76014af 
* master:
  ci: use multiple stage (envoyproxy#13557)
  tls: update BoringSSL to 2192bbc8 (4240). (envoyproxy#13567)
  fix macos v8 build (envoyproxy#13572)
  Fixed Health Check Fuzz corpus syntax (envoyproxy#13576)
  ci: Remove shellcheck diff (envoyproxy#13560)
  ci: Increate brew retry interval (envoyproxy#13565)
  dependencies: fix some of the fallout from Wasm merge. (envoyproxy#13569)
  hds: add support for delta updates in specifier (envoyproxy#13067)
  ci: workaround for actions/runner-images#1811 (envoyproxy#13577)
  ratelimit: be able to disable x-envoy-ratelimited response header sent (envoyproxy#13270)
  Update opencensus library (envoyproxy#13549)
  ci: use azp for api and go-control-plane sync (envoyproxy#13550)
  docs: Remove/make generic lyft references in docs (envoyproxy#13559)
  check_format: adding 2 more release note checks (envoyproxy#13444)
  [Wasm] Add cluster metadata fallback and upstream host metadata (envoyproxy#13477)
  [fuzz] Added validation for secrets (envoyproxy#13543)
  Add Platform Specific Feature guidance to PR template (envoyproxy#13547)

Signed-off-by: Michael Puncel <mpuncel@squareup.com>
@andrascz andrascz deleted the disable-x-envoy-ratelimited-header branch October 16, 2020 15:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@htuch htuch htuch left review comments

@mattklein123 mattklein123 mattklein123 approved these changes

@junr03 junr03 junr03 left review comments

Assignees

@junr03 junr03

@mattklein123 mattklein123

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@andrascz @junr03 @numerodix @mattklein123 @htuch