coderd: tighten /login rate limiting (#4432)

* coderd: tighten /login rate limit * coderd: add Bypass rate limit header
2025-07-13 21:36:50 +00:00 · 2022-10-20 12:01:23 -05:00
parent 43f199a987
commit 423ac04156
6 changed files with 211 additions and 20 deletions
--- a/codersdk/client.go
+++ b/codersdk/client.go
@ -24,6 +24,9 @@ const (
 	SessionCustomHeader = "Coder-Session-Token"
 	OAuth2StateKey      = "oauth_state"
 	OAuth2RedirectKey   = "oauth_redirect"
+
+	// nolint: gosec
+	BypassRatelimitHeader = "X-Coder-Bypass-Ratelimit"
 )

 // New creates a Coder client for the provided URL.