.oO SearXNG Developer Documentation Oo.
Loading...
Searching...
No Matches
searx.limiter Namespace Reference

Functions

config.Config get_cfg ()
werkzeug.Response|None filter_request (SXNG_Request request)
 pre_request ()
 is_installed ()
 initialize (flask.Flask app, settings)

Variables

 logger = logger.getChild('limiter')
config CFG = None
bool _INSTALLED = False
str LIMITER_CFG_SCHEMA = Path(__file__).parent / "limiter.toml"

Detailed Description

Bot protection / IP rate limitation.  The intention of rate limitation is to
limit suspicious requests from an IP.  The motivation behind this is the fact
that SearXNG passes through requests from bots and is thus classified as a bot
itself.  As a result, the SearXNG engine then receives a CAPTCHA or is blocked
by the search engine (the origin) in some other way.

To avoid blocking, the requests from bots to SearXNG must also be blocked, this
is the task of the limiter.  To perform this task, the limiter uses the methods
from the :ref:`botdetection`:

- Analysis of the HTTP header in the request / :ref:`botdetection probe headers`
  can be easily bypassed.

- Block and pass lists in which IPs are listed / :ref:`botdetection ip_lists`
  are hard to maintain, since the IPs of bots are not all known and change over
  the time.

- Detection & dynamically :ref:`botdetection rate limit` of bots based on the
  behavior of the requests.  For dynamically changeable IP lists a Valkey
  database is needed.

The prerequisite for IP based methods is the correct determination of the IP of
the client. The IP of the client is determined via the X-Forwarded-For_ HTTP
header.

.. attention::

   A correct setup of the HTTP request headers ``X-Forwarded-For`` and
   ``X-Real-IP`` is essential to be able to assign a request to an IP correctly:

   - `NGINX RequestHeader`_
   - `Apache RequestHeader`_

.. _X-Forwarded-For:
    https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Forwarded-For
.. _NGINX RequestHeader:
    https://docs.searxng.org/admin/installation-nginx.html#nginx-s-searxng-site
.. _Apache RequestHeader:
    https://docs.searxng.org/admin/installation-apache.html#apache-s-searxng-site

Enable Limiter
==============

To enable the limiter activate:

.. code:: yaml

   server:
     ...
     limiter: true  # rate limit the number of request on the instance, block some bots

and set the valkey-url connection. Check the value, it depends on your valkey DB
(see :ref:`settings valkey`), by example:

.. code:: yaml

   valkey:
     url: valkey://localhost:6379/0


Configure Limiter
=================

The methods of :ref:`botdetection` the limiter uses are configured in a local
file ``/etc/searxng/limiter.toml``.  The defaults are shown in limiter.toml_ /
Don't copy all values to your local configuration, just enable what you need by
overwriting the defaults.  For instance to activate the ``link_token`` method in
the :ref:`botdetection.ip_limit` you only need to set this option to ``true``:

.. code:: toml

   [botdetection.ip_limit]
   link_token = true

.. _limiter.toml:

``limiter.toml``
================

In this file the limiter finds the configuration of the :ref:`botdetection`:

- :ref:`botdetection ip_lists`
- :ref:`botdetection rate limit`
- :ref:`botdetection probe headers`

.. kernel-include:: $SOURCEDIR/limiter.toml
   :code: toml

Implementation
==============

Function Documentation

◆ filter_request()

werkzeug.Response | None searx.limiter.filter_request ( SXNG_Request request)

Definition at line 148 of file limiter.py.

148def filter_request(request: SXNG_Request) -> werkzeug.Response | None:
149 # pylint: disable=too-many-return-statements
150
151 cfg = get_cfg()
152 real_ip = ip_address(request.remote_addr)
153 network = get_network(real_ip, cfg)
154
155 if request.path == '/healthz':
156 return None
157
158 # link-local
159
160 if network.is_link_local:
161 return None
162
163 # block- & pass- lists
164 #
165 # 1. The IP of the request is first checked against the pass-list; if the IP
166 # matches an entry in the list, the request is not blocked.
167 # 2. If no matching entry is found in the pass-list, then a check is made against
168 # the block list; if the IP matches an entry in the list, the request is
169 # blocked.
170 # 3. If the IP is not in either list, the request is not blocked.
171
172 match, msg = ip_lists.pass_ip(real_ip, cfg)
173 if match:
174 logger.warning("PASS %s: matched PASSLIST - %s", network.compressed, msg)
175 return None
176
177 match, msg = ip_lists.block_ip(real_ip, cfg)
178 if match:
179 logger.error("BLOCK %s: matched BLOCKLIST - %s", network.compressed, msg)
180 return flask.make_response(('IP is on BLOCKLIST - %s' % msg, 429))
181
182 # methods applied on all requests
183
184 for func in [
185 http_user_agent,
186 ]:
187 val = func.filter_request(network, request, cfg)
188 if val is not None:
189 logger.debug(f"NOT OK ({func.__name__}): {network}: %s", dump_request(sxng_request))
190 return val
191
192 # methods applied on /search requests
193
194 if request.path == '/search':
195
196 for func in [
197 http_accept,
198 http_accept_encoding,
199 http_accept_language,
200 http_user_agent,
201 http_sec_fetch,
202 ip_limit,
203 ]:
204 val = func.filter_request(network, request, cfg)
205 if val is not None:
206 logger.debug(f"NOT OK ({func.__name__}): {network}: %s", dump_request(sxng_request))
207 return val
208
209 logger.debug(f"OK {network}: %s", dump_request(sxng_request))
210 return None
211
212

References get_cfg().

Referenced by pre_request().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ get_cfg()

config.Config searx.limiter.get_cfg ( ) 
Returns SearXNG's global limiter configuration.

Definition at line 134 of file limiter.py.

134def get_cfg() -> config.Config:
135 """Returns SearXNG's global limiter configuration."""
136 global CFG # pylint: disable=global-statement
137
138 if CFG is None:
139 from . import settings_loader # pylint: disable=import-outside-toplevel
140
141 cfg_file = (settings_loader.get_user_cfg_folder() or Path("/etc/searxng")) / "limiter.toml"
142 CFG = config.Config.from_toml(LIMITER_CFG_SCHEMA, cfg_file, searx.compat.LIMITER_CFG_DEPRECATED)
143 searx.compat.limiter_fix_cfg(CFG, cfg_file)
144
145 return CFG
146
147
searx.compat.limiter_fix_cfg
limiter_fix_cfg(cfg, cfg_file)
Definition compat.py:34

References searx.compat.limiter_fix_cfg().

Referenced by filter_request().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ initialize()

searx.limiter.initialize ( flask.Flask app,
settings ) 
Install the limiter

Definition at line 223 of file limiter.py.

223def initialize(app: flask.Flask, settings):
224 """Install the limiter"""
225 global _INSTALLED # pylint: disable=global-statement
226
227 # even if the limiter is not activated, the botdetection must be activated
228 # (e.g. the self_info plugin uses the botdetection to get client IP)
229
230 cfg = get_cfg()
231 valkey_client = valkeydb.client()
232 botdetection.init(cfg, valkey_client)
233
234 if not (settings['server']['limiter'] or settings['server']['public_instance']):
235 return
236
237 if not valkey_client:
238 logger.error(
239 "The limiter requires Valkey, please consult the documentation: "
240 "https://docs.searxng.org/admin/searx.limiter.html"
241 )
242 if settings['server']['public_instance']:
243 sys.exit(1)
244 return
245
246 _INSTALLED = True
247
248 if settings['server']['public_instance']:
249 # overwrite limiter.toml setting
250 cfg.set('botdetection.ip_limit.link_token', True)
251
252 app.before_request(pre_request)

◆ is_installed()

searx.limiter.is_installed ( ) 
Returns ``True`` if limiter is active and a valkey DB is available.

Definition at line 218 of file limiter.py.

218def is_installed():
219 """Returns ``True`` if limiter is active and a valkey DB is available."""
220 return _INSTALLED
221
222

◆ pre_request()

searx.limiter.pre_request ( ) 
See :py:obj:`flask.Flask.before_request`

Definition at line 213 of file limiter.py.

213def pre_request():
214 """See :py:obj:`flask.Flask.before_request`"""
215 return filter_request(sxng_request)
216
217

References filter_request().

Here is the call graph for this function:

Variable Documentation

◆ _INSTALLED

bool searx.limiter._INSTALLED = False
protected

Definition at line 128 of file limiter.py.

◆ CFG

config searx.limiter.CFG = None

Definition at line 127 of file limiter.py.

◆ LIMITER_CFG_SCHEMA

str searx.limiter.LIMITER_CFG_SCHEMA = Path(__file__).parent / "limiter.toml"

Definition at line 130 of file limiter.py.

◆ logger

searx.limiter.logger = logger.getChild('limiter')

Definition at line 125 of file limiter.py.