Add throttling middleware
|Reported by:||Adrian Holovaty||Owned by:||Adrian Holovaty|
|Has patch:||no||Needs documentation:||no|
|Needs tests:||no||Patch needs improvement:||no|
It'd be nice to have a middleware that would throttle requests from the same IP address, to prevent things like brute-force password attacks and DOS attacks. Or just rudeness on the part of search-engine spiders. This middleware would have to keep track of each request and which IP address it came from. Probably HTTP_FORWARDED_FOR, too, if that's available.