https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=25870 --- Comment #13 from Kyle M Hall <kyle@bywatersolutions.com> --- (In reply to Tomás Cohen Arazi from comment #11)
(In reply to Paul Derscheid from comment #5)
The other issue is that this route can be abused for DOS-attacks which must be handled somehow.
Isn't that already the case for bots hitting opac-search.pl?
I think we need to introduce some tool for throttling, but not necessarily as part of this dev, as it is really tricky (e.g. it will be common for campus sites to be queried many times from a transparent proxy on the LAN so we will also need to be able to configure exceptions...).
That is a good point. Now, we just need to add throttling to this api, then use that api in opac-search.... ;) Tomas, at this time I think you have the ultimate authority to declare throttling "out of scope" and move it to a new bug report. -- You are receiving this mail because: You are watching all bug changes.