From 9d4bf738b434e6f3eb34bcabc1e96bbbced38f52 Mon Sep 17 00:00:00 2001
From: Alexander Machehin <alexander.machehin@gmail.com>
Date: Mon, 24 Dec 2012 20:31:59 +0600
Subject: [PATCH] [refs #796] add system user limit

---
 lib/api_defender.rb | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/lib/api_defender.rb b/lib/api_defender.rb
index c19c6b844..b93f65526 100644
--- a/lib/api_defender.rb
+++ b/lib/api_defender.rb
@@ -30,7 +30,7 @@ class ApiDefender < Rack::Throttle::Hourly
       heders['X-RateLimit-Limit']     = max_per_window.to_s
       heders['X-RateLimit-Remaining'] = ([0, max_per_window - (cache_get(choice_key(request)).to_i rescue 1)].max).to_s
     end
-    @authorized = nil
+    @authorized = @user = nil
     [status, heders, body]
   end
 
@@ -51,7 +51,7 @@ class ApiDefender < Rack::Throttle::Hourly
 
   # only API calls should be throttled
   def need_defense?(request)
-    request.env['PATH_INFO'] =~ /^\/api\/v1\//
+    request.env['PATH_INFO'] =~ /^\/api\/v1\// && !system_user?(request)
   end
 
   def authorized?(request)
@@ -73,4 +73,8 @@ class ApiDefender < Rack::Throttle::Hourly
     return cache_key(request) if opts[:only_ip] || !authorized?(request)
     [@options[:key_prefix], @user.uname, Time.now.strftime('%Y-%m-%dT%H')].join(':')
   end
+
+  def system_user? request
+    authorized?(request) && %w(rosa_system iso_worker_1).include?(@user.try :uname)
+  end
 end