Hi, We're trying to use the limit_conn_zone directive to throttle incoming HTTP requests.
We'd like to throttle based on the http basic auth variable ($remote_user), however, we must do processing on this value so the zone does not overflow with illegitimate values. Ideally we'd want to do something like set $safe_remote_user ""; content_by_lua ' -- Some code to filter $remote_user values, simplified to one line here ngx.var.safe_remote_user = $remote_user ' limit_conn_zone $safe_remote_user zone:user 10m; However this runs into a problem that we can only set variables inside of the location context, but limit_conn_zone must be defined in the http context. So, as we understand it we cannot use a variable defined by lua in the limit_conn_zone directive. We were curious if anyone has run into this problem, and if there are workarounds that could help us solve this problem. Thanks, Kevin ---- Kevin Burke | 415-723-4116 | www.twilio.com _______________________________________________ nginx mailing list [email protected] http://mailman.nginx.org/mailman/listinfo/nginx
