Rate limiting request log entries

When rate limiting occurs, the entries in the request log might be inaccurate due to the request being handled prior to the session being inspected.

This means the username entry of the request.log is always unauthenticated.

When a connection is closed due to rate limiting, the status code in the log is -1. This is to signify the request was dropped without writing a status.

Ensure the Client IP address or the X-Forwarded-For header is included in the request log when rate limiting because no iv-user value is present in the log entry. A value such as an IP address is necessary to correlate entries.

Parent topic: Rate limiting