Skip to content

Commit

Permalink
docs
Browse files Browse the repository at this point in the history
  • Loading branch information
@woutslakhorst
woutslakhorst committed Oct 21, 2024
1 parent 901fea3 commit 95e5709
Showing 1 changed file with 8 additions and 0 deletions.
8 changes: 8 additions & 0 deletions docs/pages/deployment/security-considerations.rst
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,13 @@ D(D)oS Protection
*****************

Consider implementing (D)DoS protection on the application layer for all public endpoints.
Monitor and og the following metrics:

- Number of requests per second
- Number of requests from a single IP address
- Amount of non-20x responses

Any outliers should be investigated.

Maximum client body size for public-facing POST APIs
****************************************************
Expand All @@ -32,6 +39,7 @@ The following public APIs accept POST requests:
- ``/oauth2/{subjectID}/response``

To prevent malicious uploads, you MUST limit the size of the requests.
As a safeguard, the Nuts node will also limit the size of request bodies.

For example, Nginx has a configuration directive to limit the size of the request body:

Expand Down

0 comments on commit 95e5709

Please sign in to comment.