What protections does GS provide (if any) from being flooded with event requests by nefarious folks that have either our apikey/password?
Are there any automated protections in place to throttle requests from a single player/source?
Thanks in advance!!
....also, are there any limits on inbound event payload size? (same reason...nefarious folks)
We run on AWS and our load balencers are optimized and auto scale.
We have rate-limiting to prevent more than a certain number of connection attempts per second from a single IP address.
We also have the ability to automatically blacklist individual IP addresses.
As for playload size, you can read the limits here