File tree 1 file changed +23
-1
lines changed
1 file changed +23
-1
lines changed Original file line number Diff line number Diff line change @@ -238,4 +238,26 @@ Expected Signals:
238238
239239Behavior:
2402401 . The system MUST follow the custom REST API path
241- 2 . The system MUST complete login successfully
241+ 2 . The system MUST complete login successfully
242+
243+ # 15: Rate Limited Access
244+
245+ Requirements:
246+ 1 . The site MUST be a WordPress Installation.
247+ 2 . The site MUST use SSL.
248+ 3 . The site MUST implement rate limiting.
249+ 4 . The rate limiting response MUST include a valid ` Retry-After ` header.
250+
251+ Expected Signals:
252+ 1 . One or more requests during the login process MUST receive a 429 status code
253+ 2 . The 429 response MUST contain a valid ` Retry-After ` header with either:
254+ - A positive integer number of seconds to wait
255+ - An HTTP date after which to retry
256+
257+ Behavior:
258+ 1 . The system MUST pause the login process when receiving a 429
259+ 2 . The system MUST respect the ` Retry-After ` header value
260+ 3 . The system MUST automatically retry after the specified delay
261+ 4 . The system MUST complete login successfully after rate limiting expires
262+
263+ Reference Implementation: https://rate-limited.wpmt.co // TODO: Build this test site
You can’t perform that action at this time.
0 commit comments