Newer
Older
![Siarhei Poliak [EPAM / GCP]'s avatar](https://secure.gravatar.com/avatar/7b1acc26ab8f2fd1d218223fecd57196df31a77ce4ee615d539cd31d05c2817d?s=144&d=identicon "Siarhei Poliak [EPAM / GCP]")
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
{{- if and (eq .Values.global.tier "PROD") (eq .Values.global.autoscaling true) }}
apiVersion: networking.istio.io/v1alpha3
kind: EnvoyFilter
metadata:
name: {{ printf "%s-ratelimit" .Values.conf.appName | quote }}
namespace: {{ .Release.Namespace | quote }}
spec:
workloadSelector:
labels:
app: {{ .Values.conf.appName | quote }}
configPatches:
- applyTo: "HTTP_FILTER"
match:
context: "SIDECAR_INBOUND"
listener:
filterChain:
filter:
name: "envoy.filters.network.http_connection_manager"
patch:
operation: INSERT_BEFORE
value:
name: "envoy.filters.http.local_ratelimit"
typed_config:
'@type': "type.googleapis.com/udpa.type.v1.TypedStruct"
type_url: "type.googleapis.com/envoy.extensions.filters.http.local_ratelimit.v3.LocalRateLimit"
value:
stat_prefix: "http_local_rate_limiter"
enable_x_ratelimit_headers: "DRAFT_VERSION_03"
token_bucket:
max_tokens: {{ .Values.limits.maxTokens }}
tokens_per_fill: {{ .Values.limits.tokensPerFill }}
fill_interval: {{ .Values.limits.fillInterval | quote}}
filter_enabled:
runtime_key: "local_rate_limit_enabled"
default_value:
numerator: 100
denominator: "HUNDRED"
filter_enforced:
runtime_key: "local_rate_limit_enforced"
default_value:
numerator: 100
denominator: "HUNDRED"
{{- end }}