mirrors/caddy-website
1
0
Fork 0
mirror of https://github.com/caddyserver/website.git synced 2025-04-22 13:06:16 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

Further deprioritize on-demand rate limiting

Browse source
This commit is contained in:
Francis Lavoie 2024-10-07 07:32:28 -04:00
parent 12e02d62b0
commit ada450f47b
No known key found for this signature in database
GPG key ID: 52BC55A211F19186
1 changed files with 1 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

4
src/docs/markdown/caddyfile/options.md
View file

@ -94,8 +94,6 @@ Possible options are (click on each option to jump to its documentation):
on_demand_tls {
ask <endpoint>
permission <module>
interval <duration>
burst <n>
}
key_type ed25519|p256|p384|rsa2048|rsa4096
cert_issuer <name> ...
@ -568,7 +566,7 @@ The ask endpoint should return _as fast as possible_, in a few milliseconds, ide
- **permission** allows custom modules to be used to determine whether a certificate should be issued for a particular name. The module must implement the [`caddytls.OnDemandPermission` interface](https://pkg.go.dev/github.com/caddyserver/caddy/v2/modules/caddytls#OnDemandPermission). An `http` permission module is included, which is what the `ask` option uses, and remains as a shortcut for backwards compatibility.
- **interval** and **burst** allows `<n>` certificate operations within `<duration>` interval. ⚠️ These are deprecated and will be removed in a future version, due to not working as intended.
- ⚠️ **interval** and **burst** rate limiting options were available, but are NOT recommended. Remove them from your config if you still have them.
```caddy
{