Feat/fall2ban req limit

[rklpoi5678]

🔗 관련 이슈

• Closes #이슈번호

✨ 변경 사항

이번 PR에서 변경된 내용을 간단히 설명해주세요.

• 예: 로그인 페이지 UI 추가
• 예: API 연동 로직 구현

🧪 테스트 방법

리뷰어가 어떻게 테스트하면 되는지 적어주세요.

• 로컬에서 페이지 접속
• 주요 기능 동작 확인

📸 스크린샷 (선택)

UI 변경이 있다면 첨부해주세요.

✅ 체크리스트

• CI 통과
• lint / type-check 통과
• 관련 이슈와 연결됨
• 불필요한 코드 제거

Summary by CodeRabbit

• New Features

  • Implemented comprehensive rate limiting across API endpoints to prevent service abuse and maintain optimal performance. Configured with customizable per-location burst allowances, returning HTTP 429 status responses when limits are exceeded to provide clear feedback to clients.

• Chores

  • Strengthened security infrastructure by implementing stricter file permission configurations for enhanced system protection.

[coderabbitai]

Caution

Review failed

The pull request is closed.

ℹ️ Recent review info

Configuration used: defaults

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between a806981 and 10eb4d5.

📒 Files selected for processing (2)

• .github/workflows/deploy.yml
• nginx/conf.d/default.conf

---

📝 Walkthrough

Walkthrough

The pull request tightens security for environment files in the deployment workflow by restricting permissions from 644 to 600, and adds rate limiting to the nginx configuration with different burst thresholds for main and API endpoints.

Changes

Cohort / File(s)	Summary
Deployment Security .github/workflows/deploy.yml	Restricted .env file permissions from 644 to 600, limiting read/write access to the file owner only.
Nginx Rate Limiting nginx/conf.d/default.conf	Added rate limiting configuration with limit_req_status 429 and limit_req_log_level warn. Configured per-location rate limits using api_limit zone with burst=50 for main location and burst=30 for /api endpoint. Reordered comments for timeout and cookie configuration sections.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~5 minutes

Possibly related PRs

• chore/deployment-auto-runner #72: Modifies the same nginx configuration file (nginx/conf.d/default.conf), restructuring HTTP/HTTPS and proxy blocks while this PR adds rate-limiting directives.

Suggested labels

Feature, BE

Suggested reviewers

• p-changki
• play-ancora-gyungmin
• yoorrll

Poem

🐰 Rate limits and permissions tight,
Security fortified day and night,
Nginx bounds the requests with care,
Access locked—no peeking there! ✨

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch feat/fall2ban-req-limit

Tip

Try Coding Plans. Let us write the prompt for your AI agent so you can ship faster (with fewer bugs).
Share your feedback on Discord.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}