Rate-limiting by credential

Hello guys.

I´m trying to implement rate-limiting in Kong, but I´m facing some issues when limiting by credential, don´t know if I misunderstood the feature or if it´s the expected behavior.

What I want is to limit the number of requests per user, which means limiting by credential, but the actual limit is being applied by consumer instead. Here´s how I´m applying the plugin:

curl -X POST http://localhost:8001/plugins
–data “name=rate-limiting”
–data “config.minute=5”
–data “config.limit_by=credential”

Any ideas to share?

Hi, your config seems correct. May I ask how are you noticing that the limit is being applied per consumer?

Something like the logs in Rate-limiting minutes issue might help.

Today I have only one consumer set, and several credentials. First I do some calls with one user credential until it reaches the limit, then I start calling with different user credential, but Kong is blocking the other users as well due to rate-limiting.

Hey guys, just to let you know, looks like an issue with 0.4.0.
I just did an upgrade to 0.4.1 and rate-limiting is working as I was expecting :slight_smile:

1 Like

@bruno.bornia Just to make sure… Do you really mean 0.4.1, a version of Kong that was released 3 years ago?

Yes, my mistake… I changed from 0.14.0 to 0.14.1