1 個回答
- 最新
- 最多得票
- 最多評論
0
I wanted to report how I solved this in case somebody else should have this issue.
There was a usage plan in place for this API. (in API gateway, under Usage Plans). For my API there was a quota set up of 5000 hits per month. This was hit and we got the 429 errors. Given that this is an internal API we have removed the monthly quota limit.
What we noticed when we looked at the logs was that there was over 1000 hits within five minutes yesterday evening. I am not sure why this would have happened other than it was a brute force attack against the endpoint. We have now added an API key requirement to it, in the hope that this will prevent this kind of attack.
已回答 3 年前
相關內容
- 已提問 5 個月前
- AWS 官方已更新 9 個月前
- AWS 官方已更新 1 年前