Class: Gitlab::Metrics::Subscribers::RackAttack

Inherits:

ActiveSupport::Subscriber

• Object
• ActiveSupport::Subscriber
• Gitlab::Metrics::Subscribers::RackAttack

Defined in:

lib/gitlab/metrics/subscribers/rack_attack.rb

Overview

Adds logging and metrics for all Rack Attack blocks and throttling events. Instrument the cache operations of RackAttack to use in structured logs. Two fields are exposed:

- rack_attack_redis_count: the number of redis calls triggered by RackAttack in a request.
- rack_attack_redis_duration_s: the total duration of all redis calls triggered by RackAttack in a request.

Constant Summary

INSTRUMENTATION_STORE_KEY =

:rack_attack_instrumentation

Class Method Summary

• .parameter_filter ⇒ Object

  Rubocop requires this be public.

• .payload ⇒ Object

Instance Method Summary

• #blocklist(event) ⇒ Object
• #safelist(event) ⇒ Object
• #throttle(event) ⇒ Object
• #track(event) ⇒ Object

Class Method Details

.parameter_filter ⇒ Object

Rubocop requires this be public

# File 'lib/gitlab/metrics/subscribers/rack_attack.rb', line 23

def self.parameter_filter
  @parameter_filter ||= ActiveSupport::ParameterFilter.new(Rails.application.config.filter_parameters)
end

.payload ⇒ Object

# File 'lib/gitlab/metrics/subscribers/rack_attack.rb', line 15

def self.payload
  Gitlab::SafeRequestStore[INSTRUMENTATION_STORE_KEY] ||= {
    rack_attack_redis_count: 0,
    rack_attack_redis_duration_s: 0.0
  }
end

Instance Method Details

#blocklist(event) ⇒ Object

# File 'lib/gitlab/metrics/subscribers/rack_attack.rb', line 37

def blocklist(event)
  log_into_auth_logger(event, status: 403)
  report_metrics(event)
end

#safelist(event) ⇒ Object

# File 'lib/gitlab/metrics/subscribers/rack_attack.rb', line 27

def safelist(event)
  req = event.payload[:request]
  Gitlab::Instrumentation::Throttle.safelist = req.env['rack.attack.matched']
end

#throttle(event) ⇒ Object

# File 'lib/gitlab/metrics/subscribers/rack_attack.rb', line 32

def throttle(event)
  log_into_auth_logger(event, status: 429)
  report_metrics(event)
end

#track(event) ⇒ Object

# File 'lib/gitlab/metrics/subscribers/rack_attack.rb', line 42

def track(event)
  log_into_auth_logger(event, status: nil)
  report_metrics(event)
end