FEATURE increase rate limits

plesk · Jun 6, 2023 · 8df8b26 · 8df8b26
1 parent ef21913
commit 8df8b26
Show file tree

Hide file tree

Showing 3 changed files with 29 additions and 25 deletions.
diff --git a/test/config-next/ra.json b/test/config-next/ra.json
@@ -1,6 +1,6 @@
 {
 	"ra": {
-		"rateLimitPoliciesFilename": "test/rate-limit-policies.yml",
+		"rateLimitPoliciesFilename": "test/rate-limit-policies-b.yml",
 		"maxContactsPerRegistration": 3,
 		"debugAddr": ":8002",
 		"hostnamePolicyFile": "test/hostname-policy.yaml",

diff --git a/test/config/ra.json b/test/config/ra.json
@@ -1,6 +1,6 @@
 {
 	"ra": {
-		"rateLimitPoliciesFilename": "test/rate-limit-policies.yml",
+		"rateLimitPoliciesFilename": "test/rate-limit-policies-b.yml",
 		"maxContactsPerRegistration": 3,
 		"debugAddr": ":8002",
 		"hostnamePolicyFile": "test/hostname-policy.yaml",

diff --git a/test/rate-limit-policies-b.yml b/test/rate-limit-policies-b.yml
@@ -1,21 +1,23 @@
 # See cmd/shell.go for definitions of these rate limits.
 certificatesPerName:
   window: 2160h
-  threshold: 99
+  threshold: 999
   overrides:
     ratelimit.me: 1
     lim.it: 0
     # Hostnames used by the letsencrypt client integration test.
-    le.wtf: 9999
-    le1.wtf: 9999
-    le2.wtf: 9999
-    le3.wtf: 9999
-    le4.wtf: 9999
-    nginx.wtf: 9999
-    good-caa-reserved.com: 9999
-    bad-caa-reserved.com: 9999
-    ecdsa.le.wtf: 9999
-    must-staple.le.wtf: 9999
+    le.wtf: 99999
+    le1.wtf: 99999
+    le2.wtf: 99999
+    le3.wtf: 99999
+    le4.wtf: 99999
+    nginx.wtf: 99999
+    good-caa-reserved.com: 99999
+    bad-caa-reserved.com: 99999
+    ecdsa.le.wtf: 99999
+    must-staple.le.wtf: 99999
+    plesk.tech: 9999999
+    atf.plesk.tech: 9999999
   registrationOverrides:
     101: 1000
 registrationsPerIP:
@@ -30,25 +32,27 @@ registrationsPerIPRange:
     127.0.0.1: 1000000
 pendingAuthorizationsPerAccount:
   window: 168h # 1 week, should match pending authorization lifetime.
-  threshold: 999
+  threshold: 9999
 newOrdersPerAccount:
   window: 3h
-  threshold: 9999
+  threshold: 99999
 certificatesPerFQDNSet:
   window: 168h
   threshold: 99999
   overrides:
-    le.wtf: 9999
-    le1.wtf: 9999
-    le2.wtf: 9999
-    le3.wtf: 9999
-    le.wtf,le1.wtf: 9999
-    good-caa-reserved.com: 9999
-    nginx.wtf: 9999
-    ecdsa.le.wtf: 9999
-    must-staple.le.wtf: 9999
+    le.wtf: 99999
+    le1.wtf: 99999
+    le2.wtf: 99999
+    le3.wtf: 99999
+    le.wtf,le1.wtf: 99999
+    good-caa-reserved.com: 99999
+    nginx.wtf: 99999
+    ecdsa.le.wtf: 99999
+    must-staple.le.wtf: 99999
+    plesk.tech: 9999999
+    atf.plesk.tech: 9999999
 certificatesPerFQDNSetFast:
   window: 2h
   threshold: 20
   overrides:
-    le.wtf: 9
+    le.wtf: 99