Feature Request

We'd need to reject some requests when there are too many of them (number being customizable). That would prevent DDoS attacks on the authentication system which could take down the entire infrastructure otherwise if not prevented at the proxy level.

We should also probably add a link to a doc explaining how to configure for DDoS prevention in the reverse proxy in the meantime.

Description

• Make the number of requests the server can handle configurable. No limit if not configured.
• Start sending 429 responses once too many requests are being processed.

Use Case

Prevent DDoS attacks both from inside and outside the cluster. For the outside, it's better configured in the reverse proxy but we'd rather protect Authelia anyway since it's a central piece of the infrastructure.