| Limit Configuration |
|
| Rule name |
Specifies the name of throttling rule to be applied. For example, Total Request Count appears
as the rule name and you cannot modify this. |
| Operator |
Specifies the operator that connects the rule to the value specified. Select one of the
operators, Greater Than, Less Than, Equals To. By default, the Greater Than operator is selected. It
indicates that the throttling rule is applied when the Total Request Count for an API is greater
than (exceeds the limit specified for) the value specified in the Value
field.
|
| Value |
Specifies the value of the request count beyond which the policy is violated. When
multiple requests are made at the same time, it might be possible that this limit applied to trigger
an alert is not strictly adhered to. There is no loss observed in the invocation counts data, but
there might be a minor delay in aggregating the count. The invocation count gets incremented, only
when webMethods API Gateway receives the response from the native API. For example, if you have set the limit
at 5 with an interval alert of 1 minute and if you invoke 5 requests in parallel, out of which for 1
of the request the native API delays sending the response to webMethods API Gateway. In such cases, the
invocation count would still be 4 as the native API is yet to send the response to webMethods API Gateway.
There is a minor delay in aggregating the count due to native API response delay. Hence, webMethods API Gateway
allows additional invocation. However, when the invocation count exceeds 5 an alert is
triggered.
|
| Destination |
Specifies the destination to log the alerts. Select the required options:
- webMethods API Gateway
- Developer Portal
-
CentraSite
Note: This option is applicable only for the APIs published from CentraSite to webMethods API Gateway.
- Elasticsearch
- Email. You can add multiple email addresses by clicking Add.
Note: If an email alias is
available, you can type the email alias in the Email Address field with the following syntax,
${emailaliasname}. For example, if test is the email alias, then type ${test}.
- Local Log. You can select the severity of the messages to be logged (logging level) from the
Log Level list. The available log levels are ERROR, INFO, and WARN.
- For details on publishing to custom destinations, see Destination configuration.
|
| Alert Interval |
Specifies the interval of time for the limit to be reached. |
| Unit |
Specifies the unit of measurement of the Alert Interval configured, to
monitor performance, before sending an alert. For example:
|
| Alert Frequency |
Specifies the frequency at which the alerts are issued. Specify one of the options:
- Only Once. Triggers an alert only the first time the specified condition
is violated.
- Every Time. Triggers an alert every time the specified condition is
violated.
|
| Alert Message |
Specifies the text message to be included in the alert. |
| Consumer-specific throttling |
Specifies whether the configured invocation limit has to apply to all consumer applications
together or to each application individually. Note: This field is applicable only when you select
the required applications from the Consumer Applications field.
Possible values are as follows.
- If this option is selected, each application specified in the Consumer
Applications field is allowed to invoke the API the specified number of times within the
given time limit. For example, consider the following scenario.
You have specified consumer
applications Consumer1 and Consumer2 and you allow 100 invocations per minute. Then, Consumer1 can
perform up to 100 invocations per minute and Consumer2 as well can perform the same without policy
violation.
- If this option is not selected, the specified invocation limit is applied to all consumer
applications together. For example, consider the following scenario.
You have specified consumer
applications Consumer1 and Consumer2 and you allow 100 invocations per minute. Then, both consumer
applications together can invoke the API for 100 times per minute without policy violation.
|
| Consumer Applications |
Specifies the consumer applications for which the policy is applied. Do one of the following:
- Select the required consumer applications. Type a keyword to find the required application and
click + to add it.
- Select an option to apply the configured invocation limit:
- All consumers. To apply the invocation limit to all consumers. All
consumer applications - including the registered, global applications, and default applications - to
invoke the API the specified number of times within the given time limit. That is, the specified
invocation limit is shared by all consumer applications.
For example, if you specify
1000 invocations per minute for an API, then the total number of invocations
performed by all consumer applications in a minute cannot exceed 1000.
- All registered consumers. To apply the invocation limit to all registered
consumers. Allows all registered consumer applications to invoke the API the specified number of
times within the given time limit. That is, the specified invocation limit is shared by all
registered consumer applications. The registered consumer applications are the applications that are
registered with API to which the policy is applied.
For example. if you specify
1000 invocations per minute for an API, then the total number of invocations
performed by all registered consumer applications in a minute cannot exceed 1000.
- All non-registered consumers. To apply the invocation limit to all
non-registered consumers. Allows all non-registered consumer applications to invoke the API for the
specified number of times within the given time limit. That is, the specified invocation limit is
shared by all non-registered application. The non-registered applications are the applications that
are not registered with the API to which the policy is applied.
For example, if you specify
1000 invocations per minute for an API, then the total number of invocations
performed by all non-registered consumer applications in a minute cannot exceed 1000.
Note: You
can invoke an API using a non-registered consumer application only if the Global
applications or Global applications and DefaultApplication option is
selected from the Application Lookup Control field of the corresponding
Identify & Authorize policy.
- Each consumer. To apply the invocation limit to each consumer. Allows
each consumer application to invoke the API the specified number of times within the given time
limit. That is, the specified invocation limit is applicable individually for each consumer
application.
For example, if you specify 1000 invocations per minute for an API,
then each consumer application can perform 1000 invocations in a minute
- Each registered consumer. To apply the invocation limit to each
registered consumer. Allows each registered consumer application to invoke the API the specified
number of times within the given time limit. That is, the specified invocation limit is applicable
individually for each registered consumer application.
For example, if you specify
1000 invocations per minute, then each registered consumer application can perform
1000 invocations in a minute.
- Each non-registered consumer. To apply the invocation limit to each
non-registered consumer. Allows each non-registered consumer application to invoke the API the
specified number of times within the given time limit. That is, the specified invocation limit is
applicable individually for each non-registered consumer application.
For example, if you specify
1000 invocations per minute, then each non-registered consumer application can
perform 1000 invocations in a minute.
The invocation limit applied to newly added applications depends on the application type.
The time limit starts when the associated API is activated or the application is associated to the
policy. For example, consider the following:
API-level Traffic Optimization policy configured
with invocation limit as 500 for 5 minutes, for All registered
consumers. The available registered consumers are Consumer1 and Consumer2.
When you activate
the policy, the two consumers together perform 200 invocations in 2 minutes. Register a new consumer
application, Consumer3 to the list after 2 minutes from the start time. Then, all three consumers
perform the remaining 300 invocations during the last 3 minutes without violating the
policy.
Let us look at one more example.
Global Traffic Optimization policy configured
with invocation limit as 100 for 15 minutes, for Each
consumer. The available consumers are Consumer1 and Consumer2.
When you activate
the policy, the each consumer performs 100 invocations in 10 minutes. Add a new consumer
application, Consumer3 to the list after 2 minutes from the start time. Then, the new consumer can
also perform 100 invocations during the last 5 minutes without violating the policy.
Note: If you select All consumers or Each consumer from this field
and specify Registered applications from the Application Lookup
Control field of the corresponding Identify & Authorize policy, then only the
registered applications are allowed to invoke the API. In such scenarios, only the registered
consumer applications can utilize the specified invocation limit.
You can invoke APIs
using non-registered consumer applications only if the Global applications or
Global applications and DefaultApplication option is selected from the
Application Lookup Control field of the corresponding Identify &
Authorize policy.
|