...
Problem: Sidecars are unable to retrieve passwords from SSM due to the rate limit of 40 requests per second. Each sidecar makes password requests every 300 seconds for all system users across all tenants, often at the same time.
Example Calculation:
Number of sidecars: ~70
Number of system users per sidecartenant: ~16
Number of tenants: ~15
Total requests: ~16,800 requests every 300 seconds
do not try to authorize on the Keyclock if sidecar does not have correct password from SSM
Conclusion
Refining the logic for system user password retrieval and ensuring proper validation will significantly reduce unnecessary calls to the AWS Parameter Store, improving overall efficiency.
...