Rate Limit Per User/Per API

MrImport · January 19, 2016, 9:43pm

Imported Google Group message. Original thread at: Redirecting to Google Groups Import Date: 2016-01-19 21:43:52 +0000.
Sender:Malnad Sagar.
Date:Monday, 18 January 2016 12:49:13 UTC.

I would like to have rate limit per user on per API Basis

Say User 1: 100 requests/minute for httpbin api
User 2 : 500 requests/minute for httpbin api

If I understand, Policy will create same rate limit for all users

MrImport · January 19, 2016, 9:43pm

Imported Google Group message.
Sender:Martin Buhr.
Date:Monday, 18 January 2016 13:19:27 UTC.

Yes, you will need two policies, one for users in class 1 (100 p/min) and one for users in class 2 (500 p/min) you can then upgrade and downgrade keys for those policies.

show quoted text -
show quoted text -

–
You received this message because you are subscribed to the Google Groups “Tyk Community Support” group.
To unsubscribe from this group and stop receiving emails from it, send an email to [email protected].
To view this discussion on the web, visit https://groups.google.com/d/msgid/tyk-community-support/8ed20066-5a07-476f-9f20-c04108116b2b%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

gauravve · November 7, 2016, 12:08pm

Hi @Martin,

I understand that I can have a policy for a user but how to I have rate limit for the API across all users?

For example I might have 10 req/sec rate limit per user but I do not want the gateway to do 1000 req/sec for a specific API no matter how many unique users make request. This will help to protect a backend or to protect the gateway itself.

Martin · November 7, 2016, 12:47pm

This is currently not supported - you can rate limit on a user basis only. You could loop the service back on itself though, and have one API Definition point at another one (localhost), then inject a token into all inbound requests that sets an application-wide rate limit, then the second proxy will handle the application wide limit and the first the user-specific one. Not ideal but it will do what you require.

gauravve · November 8, 2016, 9:42am

Any chance API rate limits being on the road map?

James · November 10, 2016, 1:16pm

We’ve added this to the roadmap, though it will be a while before its reviewed and prioritised accordingly.

Thanks for the feedback!

James