tsai
/
abp
mirror of https://github.com/abpframework/abp.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Merge pull request #25252 from abpframework/auto-merge/rel-10-3/4489 

Merge branch dev with rel-10.3
pull/25267/head
Volosoft Agent 1 month ago
committed by GitHub
parent
0444566dd2 9e497802b5
commit
0960862e44
No known key found for this signature in database GPG Key ID: B5690EEEBB952194
1 changed files with 4 additions and 2 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 6
      docs/en/modules/operation-rate-limiting.md

6
docs/en/modules/operation-rate-limiting.md
View File

@ -324,6 +324,8 @@ await checker.CheckAsync("SendSmsCode",
new OperationRateLimitingContext { Parameter = phoneNumber }); new OperationRateLimitingContext { Parameter = phoneNumber });
```` ````
> **Important:** `PartitionByParameter` uses the parameter value **as-is** without any normalization. If you pass user-supplied values (e.g., email addresses, phone numbers), you are responsible for normalizing them before passing. For example, `user@example.com` and `User@Example.COM` will be treated as **different** partition keys. Use `PartitionByEmail` or `PartitionByPhoneNumber` instead when the parameter is an email or phone number — they handle normalization automatically.
### PartitionByCurrentUser ### PartitionByCurrentUser
Uses `ICurrentUser.Id` as the partition key. The user must be authenticated: Uses `ICurrentUser.Id` as the partition key. The user must be authenticated:
@ -357,7 +359,7 @@ policy.WithFixedWindow(TimeSpan.FromMinutes(15), maxCount: 10)
### PartitionByEmail ### PartitionByEmail
Resolves from `context.Parameter` first, then falls back to `ICurrentUser.Email`: Resolves from `context.Parameter` first, then falls back to `ICurrentUser.Email`. The value is automatically **normalized to uppercase** (using `ToUpperInvariant()`) so that `user@example.com` and `User@Example.COM` share the same rate limit counter:
````csharp ````csharp
policy.WithFixedWindow(TimeSpan.FromMinutes(1), maxCount: 1) policy.WithFixedWindow(TimeSpan.FromMinutes(1), maxCount: 1)
@ -370,7 +372,7 @@ await checker.CheckAsync("SendEmailCode",
### PartitionByPhoneNumber ### PartitionByPhoneNumber
Works the same way as `PartitionByEmail`: resolves from `context.Parameter` first, then falls back to `ICurrentUser.PhoneNumber`. Works the same way as `PartitionByEmail`: resolves from `context.Parameter` first, then falls back to `ICurrentUser.PhoneNumber`. The value is automatically **normalized** by stripping formatting characters (spaces, dashes, dots, parentheses) while keeping `+` and digits, so that `+1-555-123-4567` and `+15551234567` share the same counter.
### Custom Partition (PartitionBy) ### Custom Partition (PartitionBy)

Write Preview
Loading…
Cancel
Save