elixir-secure-coding
elixir-secure-coding copied to clipboard
podium
Rate Limiting Additions
Updates to the Rate Limiting Section In ESCT: Part 3 - Secure SDLC Concepts Elixir Sec Coding Training - Improve Rate-Limiting Lesson (issue #24)
This is an awesome start to improving the section on rate limiting!
I think there are two (technically three) sections I'd love to see added to this module that would really make it the bees knees:
- Two subsections calling out the difference between Application Rate Limiting (naming dropping Elixir libraries specifically like Hammer) and Network Rate Limiting (Web Application Firewalls) - basically a subsection for each approach that briefly explains which scenarios it makes sense to have that respective type of rate limiting over the other.
- An accompanying quiz question to this module would be amazing - one idea I had piggybacks off the Application Rate Limiting concept and centers again around the Hammer library; something along the lines of "Using the Hammer library, protect the provided function with these specifications..."
This is an awesome start to improving the section on rate limiting!
I think there are two (technically three) sections I'd love to see added to this module that would really make it the bees knees:
- Two subsections calling out the difference between Application Rate Limiting (naming dropping Elixir libraries specifically like Hammer) and Network Rate Limiting (Web Application Firewalls) - basically a subsection for each approach that briefly explains which scenarios it makes sense to have that respective type of rate limiting over the other.
- An accompanying quiz question to this module would be amazing - one idea I had piggybacks off the Application Rate Limiting concept and centers again around the Hammer library; something along the lines of "Using the Hammer library, protect the provided function with these specifications..."
-Sections added
Updates to Rate Limiting Section are complete with comments above addressed