This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Which sequence is best for Spike Arrest policy ?

Posted on 03-06-2020 11:05 AM
somaghoshatl
Bronze 3
Bronze 3
Reply posted on --/--/---- --:-- AM

I am implementing Spike Arrest policy in my Apigee proxy. I added the policy in proxy preflow as a first policy to execute as I don't want to execute other policies in the proxy for unwanted calls.

My backend can handle 100tps calls.

With that configuration, I am seeing the issue as -

When one valid batch client calling the API with incorrect clientId/token, after 100 calls Apigee gateway throws 429 error for any further call, even if the call comes from a different client with the second.

To solve the issue I thought to add the Token validation policy before Spike arrest. But then I am losing control to handle robocalls for the authorization server.

Which will the best way to solve this condition? Where should I add the spike arrest policy in the proxy?

0 1 287
Topic Labels
0 Likes
Reply
1 REPLY 1

Posted on --/--/---- --:-- AM
jaupadhyay
New Member
Reply posted on --/--/---- --:-- AM

Hi @Soma Ghosh

Have you tried adding Identifier property in your Spike Arrest Configuration. You can use client id value as identifier.

Also there is another approach using quota policy, see below link from community post.

https://community.apigee.com/questions/27843/how-to-restrict-smoothen-api-traffic-based-on-ip-a.html

0 Likes
Reply