Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Prevent multiple calls from one internal user causing CPU overload

digit-s2_ec_europa_eu
digit-s2_ec_europa_eu
Contributor
July 5, 2024

Dear reader,

We are facing a problem with Jira Data Center.

We would like to prevent the software to be have multiple request coming from internal customer, that could send multiple calls to our server.

We know that there is a native max-requests settings that we can use, but the problem is that we also use Jira as a incident ticket tool.

That is to say that our Jira is called by monitoring and alerting tools which are the most important things to handle.

Having this in mind, it is then not possible for us to know in advance how many calls we get per minutes as it depends on the attacks detected by the our internal associated tools to Jira.

Then we need a solution to prevent any internal 'bruteforce' like a user making multiple calls by using a widget or the API directly,

Here an example of call to limit: 

 

rest/api/1.0/users/picker?showAvatar=true&query=sssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssss&_=1717592574471

 

Do you have a solution to prevent for example normal users to exceed a certain amount of call whereas we could keep the requests coming from alerting tools (bot accounts) unlimited.

Thank you in advance for your answer,

Best regards

Answer
Watch
Like John Funk likes this
208 views

1 answer

View More Comments
digit-s2_ec_europa_eu
digit-s2_ec_europa_eu
Contributor
July 19, 2024

Hi @Laurie Sciutti ,

Thank you for the answer.

As I raised in the previous post :

"We know that there is a native max-requests settings that we can use, but the problem is that we also use Jira as a incident ticket tool."

Which means that we cannot miss any request, 

Could you please tell us what happen with the requests when the limit is reached, are the requests dropped or stored in a queue ?

Thank you; 

Best regards

 

Like
Laurie Sciutti
Laurie Sciutti
Community Champion
July 19, 2024

@digit-s2_ec_europa_eu 

Capture.PNG

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
DEPLOYMENT TYPE
SERVER
VERSION
9.12.10
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.