PromptShield

Rate Limiting

Token-bucket rate limiting per IP or API key. Off by default.

Add a rate_limit block to config/policy.yaml to enable:

rate_limit:
  requests_per_minute: 60 # token refill rate
  burst: 10 # max tokens available at once
  key_by: ip # ip | api_key

Remove the block to disable entirely. No config means no overhead.

key_by

ip: one bucket per client IP. Reads X-Real-IP when behind a reverse proxy. X-Forwarded-For is ignored because clients can spoof it.

api_key: one bucket per key from x-llm-api-key or Authorization: Bearer.

When limits are hit

Returns HTTP 429 before the upstream is called. Logged as action: rate_limited in the audit log.

{ "error": "rate limit exceeded" }

Policy

One YAML file controls what gets blocked, masked, or allowed per entity type. Stored in git, reloads without a restart.

Audit Logging

Every request emits one NDJSON line to stdout. Always on, no config required.

On this page

key_by
When limits are hit