Add configurable rate limiting for dev/stage environments
- Add ORCHARD_LOGIN_RATE_LIMIT env var to Helm deployment template - Set relaxed rate limit (1000/minute) for dev/stage deployments - Production keeps strict default (5/minute) for security - Re-enable auth tests in CI (no longer excluded by marker) - Update test docstrings to reflect rate limit configuration
This commit is contained in:
Mondo Diaz
@@ -52,13 +52,13 @@ kics:
|
||||
- pip install --index-url "$PIP_INDEX_URL" pytest pytest-asyncio httpx
|
||||
script:
|
||||
- cd backend
|
||||
# Run full integration test suite, excluding large/slow tests and auth-intensive tests
|
||||
# Auth-intensive tests make many login requests which trigger rate limiting on deployed environments
|
||||
# Run full integration test suite, excluding large/slow tests
|
||||
# ORCHARD_TEST_URL tells the tests which server to connect to
|
||||
# Note: Auth tests work because dev/stage deployments have relaxed rate limits
|
||||
- |
|
||||
python -m pytest tests/integration/ -v \
|
||||
--junitxml=integration-report.xml \
|
||||
-m "not large and not slow and not auth_intensive" \
|
||||
-m "not large and not slow" \
|
||||
--tb=short
|
||||
artifacts:
|
||||
when: always
|
||||
|
||||
Reference in New Issue
Block a user