Skip to content

Add rate limit conf to user directory endpoint #19291

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
MatMaul wants to merge 1 commit into
base: develop
Choose a base branch
from
Open

Add rate limit conf to user directory endpoint #19291

MatMaul wants to merge 1 commit into from

Conversation

@MatMaul
Copy link
Contributor

@MatMaul MatMaul commented Dec 9, 2025
edited
Loading

Pull Request Checklist

  • Pull request is based on the develop branch
  • Pull request includes a changelog file. The entry should:
    • Be a short description of your change which makes sense to users. "Fixed a bug that prevented receiving messages from other servers." instead of "Moved X method from EventStore to EventWorkerStore.".
    • Use markdown where necessary, mostly for code blocks.
    • End with either a period (.) or an exclamation mark (!).
    • Start with a capital letter.
    • Feel free to credit yourself, by adding a sentence "Contributed by @github_username." or "Contributed by [Your Name]." to the end of the entry.
  • Code style is correct (run the linters)

@MatMaul MatMaul force-pushed the rc-search branch 2 times, most recently from 67eac2f to 151b288 Compare December 9, 2025 13:57
@MatMaul MatMaul marked this pull request as ready for review December 9, 2025 14:32
@MatMaul MatMaul requested a review from a team as a code owner December 9, 2025 14:32
MadLittleMods
MadLittleMods approved these changes Dec 17, 2025
View reviewed changes
Copy link
Contributor

@MadLittleMods MadLittleMods left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Seems reasonable

changelog.d/19291.misc
@@ -0,0 +1 @@
Add a config to be able to rate limit search in the user directory.
Copy link
Contributor

@MadLittleMods MadLittleMods Dec 17, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What's spawning this change?

synapse/config/ratelimiting.py
self.rc_user_directory = RatelimitSettings.parse(
config,
"rc_user_directory",
defaults={"per_second": 0.016, "burst_count": 50},
Copy link
Contributor

@MadLittleMods MadLittleMods Dec 17, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Any reasoning behind these values?

Copy link
Contributor Author

@MatMaul MatMaul Dec 19, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The per_second value should be low enough so that an user can't scrape the user directory too quickly, and the burst is big-ish because you may need to get the next page of results several times, and you may make spelling mistakes to correct.

We may want to put the burst even higher actually, since invites are often issued by batches so an user may want to search for several users in a row.

I could bump it to 200 ?

Copy link
Contributor

@MadLittleMods MadLittleMods Dec 19, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We're going from no rate limit to rate limit so any value is fine to start with (bump it to 200). These are the kind of thoughts I am expecting though 👍

synapse/rest/client/user_directory.py
if not self.hs.config.userdirectory.user_directory_search_enabled:
return 200, {"limited": False, "results": []}

await self._per_user_limiter.ratelimit(requester)
Copy link
Contributor

@MadLittleMods MadLittleMods Dec 17, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do we need to wrap this to return nice errors?

I see we do it here for example:

synapse/synapse/rest/client/presence.py

Lines 95 to 103 in f4320b5

try:
await self._presence_per_user_limiter.ratelimit(requester)
except LimitExceededError as e:
logger.debug("User presence ratelimit exceeded; ignoring it.")
return 429, {
"errcode": Codes.LIMIT_EXCEEDED,
"error": "Too many requests",
"retry_after_ms": e.retry_after_ms,
}

Copy link
Contributor

@MadLittleMods MadLittleMods Dec 17, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LimitExceededError is already a SynapseError with 429 so it's probably fine without it. Just calling this out to make sure we've tried this.

Copy link
Contributor Author

@MatMaul MatMaul Dec 19, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So we would gain mainly the log line. I don't think it's that useful since we can also see the 429 in the request log line, and 429 is pretty well defined.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@MadLittleMods MadLittleMods MadLittleMods approved these changes

Assignees

No one assigned

Labels

A-Config A-Rate-Limit A-User-Directory

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@MatMaul @MadLittleMods