Thanks Mike! A plan shared at WDC was to migrate off of blazegraph "as soon as a viable alternative is identified" – is that still the plan? As how does this affect scaling work?

On Fri, Jan 28, 2022 at 3:55 PM Thad Guidry <thadguidry@gmail.com> wrote:

Yes it does, I'll add my comment to the discussion then:

"As the Search team has looked into this already and stated they see no alternative to knowing which users are issuing problematic queries that can bring down the service to all, then I think to ensure minimum availability to all users that authentication should be required.

As came up in the live discussion about this (I don't recall if notes were published somewhere, or I'd link them) -- there are other ways to guess which Query Service user or session issued a problematic query without requiring full authentication; and there is no evidence that problematic query generators would try to get around simpler ways of identifying their session (or try to ignore clear feedback that their query was harmful).

'Requiring all users to auth' has known immediate downsides, and still won't prevent a user from reissuing a problematic query, until some process for feedback + warning is implemented. So it doesn't seem like an obvious next step even if it turns out to be important in the end //